Context Navigation

← Previous Revision
Latest Revision
Next Revision →
Blame
Revision Log

draft-ietf-httpbis-p7-auth-12-from-11.diff.html @ 2110

Last change on this file since 2110 was 1052, checked in by julian.reschke@…, 10 years ago
prepare publication of -12 drafts on 2010-10-25
Property svn:eol-style set to `native` Property svn:mime-type set to `text/html; charset=iso-8859-1`
File size: 176.5 KB

Line
1	<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
2	<!-- Generated by rfcdiff 1.38: rfcdiff -->
3	<!-- <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional" > -->
4	<html>
5	<head>
6	<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
7	<meta http-equiv="Content-Style-Type" content="text/css" />
8	<title>Diff: draft-ietf-httpbis-p7-auth-11.txt - draft-ietf-httpbis-p7-auth-12.txt</title>
9	<style type="text/css">
10	body { margin: 0.4ex; margin-right: auto; }
11	tr { }
12	td { white-space: pre; font-family: monospace; vertical-align: top; font-size: 0.86em;}
13	th { font-size: 0.86em; }
14	.small { font-size: 0.6em; font-style: italic; font-family: Verdana, Helvetica, sans-serif; }
15	.left { background-color: #EEE; }
16	.right { background-color: #FFF; }
17	.diff { background-color: #CCF; }
18	.lblock { background-color: #BFB; }
19	.rblock { background-color: #FF8; }
20	.insert { background-color: #8FF; }
21	.delete { background-color: #ACF; }
22	.void { background-color: #FFB; }
23	.cont { background-color: #EEE; }
24	.linebr { background-color: #AAA; }
25	.lineno { color: red; background-color: #FFF; font-size: 0.7em; text-align: right; padding: 0 2px; }
26	.elipsis{ background-color: #AAA; }
27	.left .cont { background-color: #DDD; }
28	.right .cont { background-color: #EEE; }
29	.lblock .cont { background-color: #9D9; }
30	.rblock .cont { background-color: #DD6; }
31	.insert .cont { background-color: #0DD; }
32	.delete .cont { background-color: #8AD; }
33	.stats, .stats td, .stats th { background-color: #EEE; padding: 2px 0; }
34	</style>
35	</head>
36	<body >
37	<table border="0" cellpadding="0" cellspacing="0">
38	<tr bgcolor="orange"><th></th><th> draft-ietf-httpbis-p7-auth-11.txt </th><th> </th><th> draft-ietf-httpbis-p7-auth-12.txt </th><th></th></tr>
39	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
40	<tr><td class="lineno" valign="top"></td><td class="left">HTTPbis Working Group R. Fielding, Ed.</td><td> </td><td class="right">HTTPbis Working Group R. Fielding, Ed.</td><td class="lineno" valign="top"></td></tr>
41	<tr><td class="lineno" valign="top"></td><td class="left">Internet-Draft Day Software</td><td> </td><td class="right">Internet-Draft Day Software</td><td class="lineno" valign="top"></td></tr>
42	<tr><td class="lineno" valign="top"></td><td class="left">Obsoletes: 2616 (if approved) J. Gettys</td><td> </td><td class="right">Obsoletes: 2616 (if approved) J. Gettys</td><td class="lineno" valign="top"></td></tr>
43	<tr><td class="lineno" valign="top"></td><td class="left">Updates: 2617 (if approved) Alcatel-Lucent</td><td> </td><td class="right">Updates: 2617 (if approved) Alcatel-Lucent</td><td class="lineno" valign="top"></td></tr>
44	<tr><td class="lineno" valign="top"></td><td class="left">Intended status: Standards Track J. Mogul</td><td> </td><td class="right">Intended status: Standards Track J. Mogul</td><td class="lineno" valign="top"></td></tr>
45	<tr><td><a name="diff0001" /></td></tr>
46	<tr><td class="lineno" valign="top"></td><td class="lblock">Expires: <span class="delete">February 5, 2011</span> HP</td><td> </td><td class="rblock">Expires: <span class="insert">April 28, 2011 </span> HP</td><td class="lineno" valign="top"></td></tr>
47	<tr><td class="lineno" valign="top"></td><td class="left"> H. Frystyk</td><td> </td><td class="right"> H. Frystyk</td><td class="lineno" valign="top"></td></tr>
48	<tr><td class="lineno" valign="top"></td><td class="left"> Microsoft</td><td> </td><td class="right"> Microsoft</td><td class="lineno" valign="top"></td></tr>
49	<tr><td class="lineno" valign="top"></td><td class="left"> L. Masinter</td><td> </td><td class="right"> L. Masinter</td><td class="lineno" valign="top"></td></tr>
50	<tr><td class="lineno" valign="top"></td><td class="left"> Adobe Systems</td><td> </td><td class="right"> Adobe Systems</td><td class="lineno" valign="top"></td></tr>
51	<tr><td class="lineno" valign="top"></td><td class="left"> P. Leach</td><td> </td><td class="right"> P. Leach</td><td class="lineno" valign="top"></td></tr>
52	<tr><td class="lineno" valign="top"></td><td class="left"> Microsoft</td><td> </td><td class="right"> Microsoft</td><td class="lineno" valign="top"></td></tr>
53	<tr><td class="lineno" valign="top"></td><td class="left"> T. Berners-Lee</td><td> </td><td class="right"> T. Berners-Lee</td><td class="lineno" valign="top"></td></tr>
54	<tr><td class="lineno" valign="top"></td><td class="left"> W3C/MIT</td><td> </td><td class="right"> W3C/MIT</td><td class="lineno" valign="top"></td></tr>
55	<tr><td class="lineno" valign="top"></td><td class="left"> Y. Lafon, Ed.</td><td> </td><td class="right"> Y. Lafon, Ed.</td><td class="lineno" valign="top"></td></tr>
56	<tr><td class="lineno" valign="top"></td><td class="left"> W3C</td><td> </td><td class="right"> W3C</td><td class="lineno" valign="top"></td></tr>
57	<tr><td class="lineno" valign="top"></td><td class="left"> J. Reschke, Ed.</td><td> </td><td class="right"> J. Reschke, Ed.</td><td class="lineno" valign="top"></td></tr>
58	<tr><td class="lineno" valign="top"></td><td class="left"> greenbytes</td><td> </td><td class="right"> greenbytes</td><td class="lineno" valign="top"></td></tr>
59	<tr><td><a name="diff0002" /></td></tr>
60	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete"> August 4</span>, 2010</td><td> </td><td class="rblock"> <span class="insert">October 25</span>, 2010</td><td class="lineno" valign="top"></td></tr>
61	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
62	<tr><td class="lineno" valign="top"></td><td class="left"> HTTP/1.1, part 7: Authentication</td><td> </td><td class="right"> HTTP/1.1, part 7: Authentication</td><td class="lineno" valign="top"></td></tr>
63	<tr><td><a name="diff0003" /></td></tr>
64	<tr><td class="lineno" valign="top"></td><td class="lblock"> draft-ietf-httpbis-p7-auth-1<span class="delete">1</span></td><td> </td><td class="rblock"> draft-ietf-httpbis-p7-auth-1<span class="insert">2</span></td><td class="lineno" valign="top"></td></tr>
65	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
66	<tr><td class="lineno" valign="top"></td><td class="left">Abstract</td><td> </td><td class="right">Abstract</td><td class="lineno" valign="top"></td></tr>
67	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
68	<tr><td class="lineno" valign="top"></td><td class="left"> The Hypertext Transfer Protocol (HTTP) is an application-level</td><td> </td><td class="right"> The Hypertext Transfer Protocol (HTTP) is an application-level</td><td class="lineno" valign="top"></td></tr>
69	<tr><td class="lineno" valign="top"></td><td class="left"> protocol for distributed, collaborative, hypermedia information</td><td> </td><td class="right"> protocol for distributed, collaborative, hypermedia information</td><td class="lineno" valign="top"></td></tr>
70	<tr><td class="lineno" valign="top"></td><td class="left"> systems. HTTP has been in use by the World Wide Web global</td><td> </td><td class="right"> systems. HTTP has been in use by the World Wide Web global</td><td class="lineno" valign="top"></td></tr>
71	<tr><td class="lineno" valign="top"></td><td class="left"> information initiative since 1990. This document is Part 7 of the</td><td> </td><td class="right"> information initiative since 1990. This document is Part 7 of the</td><td class="lineno" valign="top"></td></tr>
72	<tr><td class="lineno" valign="top"></td><td class="left"> seven-part specification that defines the protocol referred to as</td><td> </td><td class="right"> seven-part specification that defines the protocol referred to as</td><td class="lineno" valign="top"></td></tr>
73	<tr><td class="lineno" valign="top"></td><td class="left"> "HTTP/1.1" and, taken together, obsoletes RFC 2616. Part 7 defines</td><td> </td><td class="right"> "HTTP/1.1" and, taken together, obsoletes RFC 2616. Part 7 defines</td><td class="lineno" valign="top"></td></tr>
74	<tr><td class="lineno" valign="top"></td><td class="left"> HTTP Authentication.</td><td> </td><td class="right"> HTTP Authentication.</td><td class="lineno" valign="top"></td></tr>
75	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
76	<tr><td class="lineno" valign="top"></td><td class="left">Editorial Note (To be removed by RFC Editor)</td><td> </td><td class="right">Editorial Note (To be removed by RFC Editor)</td><td class="lineno" valign="top"></td></tr>
77	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
78	<tr><td class="lineno" valign="top"></td><td class="left"> Discussion of this draft should take place on the HTTPBIS working</td><td> </td><td class="right"> Discussion of this draft should take place on the HTTPBIS working</td><td class="lineno" valign="top"></td></tr>
79	<tr><td class="lineno" valign="top"></td><td class="left"> group mailing list (ietf-http-wg@w3.org). The current issues list is</td><td> </td><td class="right"> group mailing list (ietf-http-wg@w3.org). The current issues list is</td><td class="lineno" valign="top"></td></tr>
80	<tr><td class="lineno" valign="top"></td><td class="left"> at <http://tools.ietf.org/wg/httpbis/trac/report/3> and related</td><td> </td><td class="right"> at <http://tools.ietf.org/wg/httpbis/trac/report/3> and related</td><td class="lineno" valign="top"></td></tr>
81	<tr><td class="lineno" valign="top"></td><td class="left"> documents (including fancy diffs) can be found at</td><td> </td><td class="right"> documents (including fancy diffs) can be found at</td><td class="lineno" valign="top"></td></tr>
82	<tr><td class="lineno" valign="top"></td><td class="left"> <http://tools.ietf.org/wg/httpbis/>.</td><td> </td><td class="right"> <http://tools.ietf.org/wg/httpbis/>.</td><td class="lineno" valign="top"></td></tr>
83	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
84	<tr><td><a name="diff0004" /></td></tr>
85	<tr><td class="lineno" valign="top"></td><td class="lblock"> The changes in this draft are summarized in Appendix B.1<span class="delete">2</span>.</td><td> </td><td class="rblock"> The changes in this draft are summarized in Appendix B.1<span class="insert">3</span>.</td><td class="lineno" valign="top"></td></tr>
86	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
87	<tr><td class="lineno" valign="top"></td><td class="left">Status of This Memo</td><td> </td><td class="right">Status of This Memo</td><td class="lineno" valign="top"></td></tr>
88	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
89	<tr><td class="lineno" valign="top"></td><td class="left"> This Internet-Draft is submitted in full conformance with the</td><td> </td><td class="right"> This Internet-Draft is submitted in full conformance with the</td><td class="lineno" valign="top"></td></tr>
90	<tr><td class="lineno" valign="top"></td><td class="left"> provisions of BCP 78 and BCP 79.</td><td> </td><td class="right"> provisions of BCP 78 and BCP 79.</td><td class="lineno" valign="top"></td></tr>
91	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
92	<tr><td class="lineno" valign="top"></td><td class="left"> Internet-Drafts are working documents of the Internet Engineering</td><td> </td><td class="right"> Internet-Drafts are working documents of the Internet Engineering</td><td class="lineno" valign="top"></td></tr>
93	<tr><td class="lineno" valign="top"></td><td class="left"> Task Force (IETF). Note that other groups may also distribute</td><td> </td><td class="right"> Task Force (IETF). Note that other groups may also distribute</td><td class="lineno" valign="top"></td></tr>
94	<tr><td class="lineno" valign="top"></td><td class="left"> working documents as Internet-Drafts. The list of current Internet-</td><td> </td><td class="right"> working documents as Internet-Drafts. The list of current Internet-</td><td class="lineno" valign="top"></td></tr>
95	<tr><td class="lineno" valign="top"></td><td class="left"> Drafts is at http://datatracker.ietf.org/drafts/current/.</td><td> </td><td class="right"> Drafts is at http://datatracker.ietf.org/drafts/current/.</td><td class="lineno" valign="top"></td></tr>
96	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
97	<tr><td class="lineno" valign="top"></td><td class="left"> Internet-Drafts are draft documents valid for a maximum of six months</td><td> </td><td class="right"> Internet-Drafts are draft documents valid for a maximum of six months</td><td class="lineno" valign="top"></td></tr>
98	<tr><td class="lineno" valign="top"></td><td class="left"> and may be updated, replaced, or obsoleted by other documents at any</td><td> </td><td class="right"> and may be updated, replaced, or obsoleted by other documents at any</td><td class="lineno" valign="top"></td></tr>
99	<tr><td class="lineno" valign="top"></td><td class="left"> time. It is inappropriate to use Internet-Drafts as reference</td><td> </td><td class="right"> time. It is inappropriate to use Internet-Drafts as reference</td><td class="lineno" valign="top"></td></tr>
100	<tr><td class="lineno" valign="top"></td><td class="left"> material or to cite them other than as "work in progress."</td><td> </td><td class="right"> material or to cite them other than as "work in progress."</td><td class="lineno" valign="top"></td></tr>
101	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
102	<tr><td><a name="diff0005" /></td></tr>
103	<tr><td class="lineno" valign="top"></td><td class="lblock"> This Internet-Draft will expire on <span class="delete">February 5</span>, 2011.</td><td> </td><td class="rblock"> This Internet-Draft will expire on <span class="insert">April 28</span>, 2011.</td><td class="lineno" valign="top"></td></tr>
104	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
105	<tr><td class="lineno" valign="top"></td><td class="left">Copyright Notice</td><td> </td><td class="right">Copyright Notice</td><td class="lineno" valign="top"></td></tr>
106	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
107	<tr><td class="lineno" valign="top"></td><td class="left"> Copyright (c) 2010 IETF Trust and the persons identified as the</td><td> </td><td class="right"> Copyright (c) 2010 IETF Trust and the persons identified as the</td><td class="lineno" valign="top"></td></tr>
108	<tr><td class="lineno" valign="top"></td><td class="left"> document authors. All rights reserved.</td><td> </td><td class="right"> document authors. All rights reserved.</td><td class="lineno" valign="top"></td></tr>
109	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
110	<tr><td class="lineno" valign="top"></td><td class="left"> This document is subject to BCP 78 and the IETF Trust's Legal</td><td> </td><td class="right"> This document is subject to BCP 78 and the IETF Trust's Legal</td><td class="lineno" valign="top"></td></tr>
111	<tr><td class="lineno" valign="top"></td><td class="left"> Provisions Relating to IETF Documents</td><td> </td><td class="right"> Provisions Relating to IETF Documents</td><td class="lineno" valign="top"></td></tr>
112	<tr><td class="lineno" valign="top"></td><td class="left"> (http://trustee.ietf.org/license-info) in effect on the date of</td><td> </td><td class="right"> (http://trustee.ietf.org/license-info) in effect on the date of</td><td class="lineno" valign="top"></td></tr>
113	<tr><td class="lineno" valign="top"></td><td class="left"> publication of this document. Please review these documents</td><td> </td><td class="right"> publication of this document. Please review these documents</td><td class="lineno" valign="top"></td></tr>
114	<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
115	<tr bgcolor="gray" ><td></td><th><a name="part-l2" /><small>skipping to change at</small><em> page 3, line 10</em></th><th> </th><th><a name="part-r2" /><small>skipping to change at</small><em> page 3, line 10</em></th><td></td></tr>
116	<tr><td class="lineno" valign="top"></td><td class="left"> outside the IETF Standards Process, and derivative works of it may</td><td> </td><td class="right"> outside the IETF Standards Process, and derivative works of it may</td><td class="lineno" valign="top"></td></tr>
117	<tr><td class="lineno" valign="top"></td><td class="left"> not be created outside the IETF Standards Process, except to format</td><td> </td><td class="right"> not be created outside the IETF Standards Process, except to format</td><td class="lineno" valign="top"></td></tr>
118	<tr><td class="lineno" valign="top"></td><td class="left"> it for publication as an RFC or to translate it into languages other</td><td> </td><td class="right"> it for publication as an RFC or to translate it into languages other</td><td class="lineno" valign="top"></td></tr>
119	<tr><td class="lineno" valign="top"></td><td class="left"> than English.</td><td> </td><td class="right"> than English.</td><td class="lineno" valign="top"></td></tr>
120	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
121	<tr><td class="lineno" valign="top"></td><td class="left">Table of Contents</td><td> </td><td class="right">Table of Contents</td><td class="lineno" valign="top"></td></tr>
122	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
123	<tr><td class="lineno" valign="top"></td><td class="left"> 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 4</td><td> </td><td class="right"> 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 4</td><td class="lineno" valign="top"></td></tr>
124	<tr><td class="lineno" valign="top"></td><td class="left"> 1.1. Requirements . . . . . . . . . . . . . . . . . . . . . . . 4</td><td> </td><td class="right"> 1.1. Requirements . . . . . . . . . . . . . . . . . . . . . . . 4</td><td class="lineno" valign="top"></td></tr>
125	<tr><td class="lineno" valign="top"></td><td class="left"> 1.2. Syntax Notation . . . . . . . . . . . . . . . . . . . . . 4</td><td> </td><td class="right"> 1.2. Syntax Notation . . . . . . . . . . . . . . . . . . . . . 4</td><td class="lineno" valign="top"></td></tr>
126	<tr><td><a name="diff0006" /></td></tr>
127	<tr><td class="lineno" valign="top"></td><td class="lblock"> 1.2.1. Core Rules . . . . . . . . . . . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"> 1.2.1. Core Rules . . . . . . . . . . . . . . . . . . . . . . <span class="insert">4</span></td><td class="lineno" valign="top"></td></tr>
128	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 1.2.2. ABNF Rules defined in other Parts of the</span></td><td> </td><td class="rblock"><span class="insert"> 2. Access Authentication Framework</span> . . . . . . . . . . . . . . . <span class="insert">5</span></td><td class="lineno" valign="top"></td></tr>
129	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Specification</span> . . . . . . . . . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"><span class="insert"> 2.1. Authentication Scheme Registry</span> . . . . . <span class="insert">. . . . . . . . . 7</span></td><td class="lineno" valign="top"></td></tr>
130	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 2.</span> Status Code Definitions . . . . . . . . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"><span class="insert"> 3.</span> Status Code Definitions . . . . . . . . . . . . . . . . . . . <span class="insert">7</span></td><td class="lineno" valign="top"></td></tr>
131	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 2.1.</span> 401 Unauthorized . . . . . . . . . . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"><span class="insert"> 3.1.</span> 401 Unauthorized . . . . . . . . . . . . . . . . . . . . . <span class="insert">7</span></td><td class="lineno" valign="top"></td></tr>
132	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 2.2.</span> 407 Proxy Authentication Required . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"><span class="insert"> 3.2.</span> 407 Proxy Authentication Required . . . . . . . . . . . . <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
133	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 3.</span> Header Field Definitions . . . . . . . . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"><span class="insert"> 4.</span> Header Field Definitions . . . . . . . . . . . . . . . . . . . <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
134	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 3.1.</span> Authorization . . . . . . . . . . . . . . . . . . . . . . <span class="delete">6</span></td><td> </td><td class="rblock"><span class="insert"> 4.1.</span> Authorization . . . . . . . . . . . . . . . . . . . . . . <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
135	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 3.2.</span> Proxy-Authenticate . . . . . . . . . . . . . . . . . . . . <span class="delete">6</span></td><td> </td><td class="rblock"><span class="insert"> 4.2.</span> Proxy-Authenticate . . . . . . . . . . . . . . . . . . . . <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
136	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 3.3.</span> Proxy-Authorization . . . . . . . . . . . . . . . . . . . <span class="delete">7</span></td><td> </td><td class="rblock"><span class="insert"> 4.3.</span> Proxy-Authorization . . . . . . . . . . . . . . . . . . . <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
137	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 3.4.</span> WWW-Authenticate . . . . . . . . . . . . . . . . . . . . . <span class="delete">7</span></td><td> </td><td class="rblock"><span class="insert"> 4.4.</span> WWW-Authenticate . . . . . . . . . . . . . . . . . . . . . <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
138	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 4.</span> IANA Considerations . . . . . . . . . . . . . . . . . . . . . <span class="delete">8</span></td><td> </td><td class="rblock"><span class="insert"> 5.</span> IANA Considerations . . . . . . . . . . . . . . . . . . . . . <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
139	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 4.1.</span> Status Code Registration . . . . . . . . . . . . . . . . . <span class="delete">8</span></td><td> </td><td class="rblock"><span class="insert"> 5.1. Authenticaton Scheme Registry . . . . . . . . . . . . . . 10</span></td><td class="lineno" valign="top"></td></tr>
140	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 4.2.</span> Header Field Registration . . . . . . . . . . . . . . . . <span class="delete">8</span></td><td> </td><td class="rblock"><span class="insert"> 5.2.</span> Status Code Registration . . . . . . . . . . . . . . . . . <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
141	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 5.</span> Security Considerations . . . . . . . . . . . . . . . . . . . <span class="delete">8</span></td><td> </td><td class="rblock"><span class="insert"> 5.3.</span> Header Field Registration . . . . . . . . . . . . . . . . <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
142	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 5.1.</span> Authentication Credentials and Idle Clients . . . . . . . <span class="delete">9</span></td><td> </td><td class="rblock"><span class="insert"> 6.</span> Security Considerations . . . . . . . . . . . . . . . . . . . <span class="insert">11</span></td><td class="lineno" valign="top"></td></tr>
143	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 6.</span> Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . <span class="delete">9</span></td><td> </td><td class="rblock"><span class="insert"> 6.1.</span> Authentication Credentials and Idle Clients . . . . . . . <span class="insert">11</span></td><td class="lineno" valign="top"></td></tr>
144	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 7.</span> References . . . . . . . . . . . . . . . . . . . . . . . . . . <span class="delete">9</span></td><td> </td><td class="rblock"><span class="insert"> 7.</span> Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . <span class="insert">12</span></td><td class="lineno" valign="top"></td></tr>
145	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 7.1.</span> Normative References . . . . . . . . . . . . . . . . . . . <span class="delete">9</span></td><td> </td><td class="rblock"><span class="insert"> 8.</span> References . . . . . . . . . . . . . . . . . . . . . . . . . . <span class="insert">12</span></td><td class="lineno" valign="top"></td></tr>
146	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 7.2.</span> Informative References . . . . . . . . . . . . . . . . . . <span class="delete">10</span></td><td> </td><td class="rblock"><span class="insert"> 8.1.</span> Normative References . . . . . . . . . . . . . . . . . . . <span class="insert">12</span></td><td class="lineno" valign="top"></td></tr>
147	<tr><td class="lineno" valign="top"></td><td class="lblock"> Appendix A. Collected ABNF . . . . . . . . . . . . . . . . . . . <span class="delete">10</span></td><td> </td><td class="rblock"><span class="insert"> 8.2.</span> Informative References . . . . . . . . . . . . . . . . . . <span class="insert">12</span></td><td class="lineno" valign="top"></td></tr>
148	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> Appendix A. Collected ABNF . . . . . . . . . . . . . . . . . . . <span class="insert">13</span></td><td class="lineno" valign="top"></td></tr>
149	<tr><td class="lineno" valign="top"></td><td class="left"> Appendix B. Change Log (to be removed by RFC Editor before</td><td> </td><td class="right"> Appendix B. Change Log (to be removed by RFC Editor before</td><td class="lineno" valign="top"></td></tr>
150	<tr><td><a name="diff0007" /></td></tr>
151	<tr><td class="lineno" valign="top"></td><td class="lblock"> publication) . . . . . . . . . . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> publication) . . . . . . . . . . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
152	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.1. Since <span class="delete">RFC2616</span> . . . . . . . . . . . . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> B.1. Since <span class="insert">RFC 2616</span> . . . . . . . . . . . . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
153	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.2. Since draft-ietf-httpbis-p7-auth-00 . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> B.2. Since draft-ietf-httpbis-p7-auth-00 . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
154	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.3. Since draft-ietf-httpbis-p7-auth-01 . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> B.3. Since draft-ietf-httpbis-p7-auth-01 . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
155	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.4. Since draft-ietf-httpbis-p7-auth-02 . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> B.4. Since draft-ietf-httpbis-p7-auth-02 . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
156	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.5. Since draft-ietf-httpbis-p7-auth-03 . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> B.5. Since draft-ietf-httpbis-p7-auth-03 . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
157	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.6. Since draft-ietf-httpbis-p7-auth-04 . . . . . . . . . . . <span class="delete">11</span></td><td> </td><td class="rblock"> B.6. Since draft-ietf-httpbis-p7-auth-04 . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
158	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.7. Since draft-ietf-httpbis-p7-auth-05 . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"> B.7. Since draft-ietf-httpbis-p7-auth-05 . . . . . . . . . . . <span class="insert">15</span></td><td class="lineno" valign="top"></td></tr>
159	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.8. Since draft-ietf-httpbis-p7-auth-06 . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"> B.8. Since draft-ietf-httpbis-p7-auth-06 . . . . . . . . . . . <span class="insert">15</span></td><td class="lineno" valign="top"></td></tr>
160	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.9. Since draft-ietf-httpbis-p7-auth-07 . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"> B.9. Since draft-ietf-httpbis-p7-auth-07 . . . . . . . . . . . <span class="insert">15</span></td><td class="lineno" valign="top"></td></tr>
161	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.10. Since draft-ietf-httpbis-p7-auth-08 . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"> B.10. Since draft-ietf-httpbis-p7-auth-08 . . . . . . . . . . . <span class="insert">15</span></td><td class="lineno" valign="top"></td></tr>
162	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.11. Since draft-ietf-httpbis-p7-auth-09 . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"> B.11. Since draft-ietf-httpbis-p7-auth-09 . . . . . . . . . . . <span class="insert">15</span></td><td class="lineno" valign="top"></td></tr>
163	<tr><td class="lineno" valign="top"></td><td class="lblock"> B.12. Since draft-ietf-httpbis-p7-auth-10 . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"> B.12. Since draft-ietf-httpbis-p7-auth-10 . . . . . . . . . . . <span class="insert">15</span></td><td class="lineno" valign="top"></td></tr>
164	<tr><td class="lineno" valign="top"></td><td class="lblock"> Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . <span class="delete">12</span></td><td> </td><td class="rblock"><span class="insert"> B.13. Since draft-ietf-httpbis-p7-auth-11 . . . . . . . . . . . 15</span></td><td class="lineno" valign="top"></td></tr>
165	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . <span class="insert">16</span></td><td class="lineno" valign="top"></td></tr>
166	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
167	<tr><td class="lineno" valign="top"></td><td class="left">1. Introduction</td><td> </td><td class="right">1. Introduction</td><td class="lineno" valign="top"></td></tr>
168	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
169	<tr><td><a name="diff0008" /></td></tr>
170	<tr><td class="lineno" valign="top"></td><td class="lblock"> This document defines HTTP/1.1 access control and authentication.</td><td> </td><td class="rblock"> This document defines HTTP/1.1 access control and authentication. <span class="insert">It</span></td><td class="lineno" valign="top"></td></tr>
171	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">Right now it</span> includes the <span class="delete">extracted</span> relevant <span class="delete">sections</span> of RFC 2616</td><td> </td><td class="rblock"> includes the relevant <span class="insert">parts</span> of RFC 2616 with only minor <span class="insert">changes, plus</span></td><td class="lineno" valign="top"></td></tr>
172	<tr><td class="lineno" valign="top"></td><td class="lblock"> with only minor <span class="delete">changes. The intention is to move</span> the general</td><td> </td><td class="rblock"> the general framework for HTTP <span class="insert">authentication,</span> as <span class="insert">previously defined</span></td><td class="lineno" valign="top"></td></tr>
173	<tr><td class="lineno" valign="top"></td><td class="lblock"> framework for HTTP <span class="delete">authentication here,</span> as <span class="delete">currently specified</span> in</td><td> </td><td class="rblock"> in <span class="insert">"HTTP Authentication: Basic</span> and <span class="insert">Digest Access Authentication"</span></td><td class="lineno" valign="top"></td></tr>
174	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">[RFC2617],</span> and <span class="delete">allow the individual authentication mechanisms to be</span></td><td> </td><td class="rblock"><span class="insert"> ([RFC2617]).</span></td><td class="lineno" valign="top"></td></tr>
175	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> defined elsewhere. This introduction will be rewritten when that</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
176	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> occurs.</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
177	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
178	<tr><td class="lineno" valign="top"></td><td class="left"> HTTP provides several OPTIONAL challenge-response authentication</td><td> </td><td class="right"> HTTP provides several OPTIONAL challenge-response authentication</td><td class="lineno" valign="top"></td></tr>
179	<tr><td class="lineno" valign="top"></td><td class="left"> mechanisms which can be used by a server to challenge a client</td><td> </td><td class="right"> mechanisms which can be used by a server to challenge a client</td><td class="lineno" valign="top"></td></tr>
180	<tr><td class="lineno" valign="top"></td><td class="left"> request and by a client to provide authentication information. The</td><td> </td><td class="right"> request and by a client to provide authentication information. The</td><td class="lineno" valign="top"></td></tr>
181	<tr><td><a name="diff0009" /></td></tr>
182	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">general framework for access authentication, and the specification of</span></td><td> </td><td class="rblock"> "basic" and "digest" <span class="insert">authentication schemes continue to be</span> specified</td><td class="lineno" valign="top"></td></tr>
183	<tr><td class="lineno" valign="top"></td><td class="lblock"> "basic" and "digest" <span class="delete">authentication, are</span> specified in <span class="delete">"HTTP</span></td><td> </td><td class="rblock"> in <span class="insert">RFC 2617.</span></td><td class="lineno" valign="top"></td></tr>
184	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Authentication: Basic and Digest Access Authentication" [RFC2617].</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
185	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> This specification adopts the definitions of "challenge" and</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
186	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> "credentials" from that specification.</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
187	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
188	<tr><td class="lineno" valign="top"></td><td class="left">1.1. Requirements</td><td> </td><td class="right">1.1. Requirements</td><td class="lineno" valign="top"></td></tr>
189	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
190	<tr><td class="lineno" valign="top"></td><td class="left"> The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",</td><td> </td><td class="right"> The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",</td><td class="lineno" valign="top"></td></tr>
191	<tr><td class="lineno" valign="top"></td><td class="left"> "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this</td><td> </td><td class="right"> "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this</td><td class="lineno" valign="top"></td></tr>
192	<tr><td class="lineno" valign="top"></td><td class="left"> document are to be interpreted as described in [RFC2119].</td><td> </td><td class="right"> document are to be interpreted as described in [RFC2119].</td><td class="lineno" valign="top"></td></tr>
193	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
194	<tr><td class="lineno" valign="top"></td><td class="left"> An implementation is not compliant if it fails to satisfy one or more</td><td> </td><td class="right"> An implementation is not compliant if it fails to satisfy one or more</td><td class="lineno" valign="top"></td></tr>
195	<tr><td class="lineno" valign="top"></td><td class="left"> of the "MUST" or "REQUIRED" level requirements for the protocols it</td><td> </td><td class="right"> of the "MUST" or "REQUIRED" level requirements for the protocols it</td><td class="lineno" valign="top"></td></tr>
196	<tr><td class="lineno" valign="top"></td><td class="left"> implements. An implementation that satisfies all the "MUST" or</td><td> </td><td class="right"> implements. An implementation that satisfies all the "MUST" or</td><td class="lineno" valign="top"></td></tr>
197	<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
198	<tr bgcolor="gray" ><td></td><th><a name="part-l3" /><small>skipping to change at</small><em> page 5, line 9</em></th><th> </th><th><a name="part-r3" /><small>skipping to change at</small><em> page 5, line 5</em></th><td></td></tr>
199	<tr><td class="lineno" valign="top"></td><td class="left"> [RFC5234], Appendix B.1: ALPHA (letters), CR (carriage return), CRLF</td><td> </td><td class="right"> [RFC5234], Appendix B.1: ALPHA (letters), CR (carriage return), CRLF</td><td class="lineno" valign="top"></td></tr>
200	<tr><td class="lineno" valign="top"></td><td class="left"> (CR LF), CTL (controls), DIGIT (decimal 0-9), DQUOTE (double quote),</td><td> </td><td class="right"> (CR LF), CTL (controls), DIGIT (decimal 0-9), DQUOTE (double quote),</td><td class="lineno" valign="top"></td></tr>
201	<tr><td class="lineno" valign="top"></td><td class="left"> HEXDIG (hexadecimal 0-9/A-F/a-f), LF (line feed), OCTET (any 8-bit</td><td> </td><td class="right"> HEXDIG (hexadecimal 0-9/A-F/a-f), LF (line feed), OCTET (any 8-bit</td><td class="lineno" valign="top"></td></tr>
202	<tr><td class="lineno" valign="top"></td><td class="left"> sequence of data), SP (space), VCHAR (any visible USASCII character),</td><td> </td><td class="right"> sequence of data), SP (space), VCHAR (any visible USASCII character),</td><td class="lineno" valign="top"></td></tr>
203	<tr><td class="lineno" valign="top"></td><td class="left"> and WSP (whitespace).</td><td> </td><td class="right"> and WSP (whitespace).</td><td class="lineno" valign="top"></td></tr>
204	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
205	<tr><td class="lineno" valign="top"></td><td class="left">1.2.1. Core Rules</td><td> </td><td class="right">1.2.1. Core Rules</td><td class="lineno" valign="top"></td></tr>
206	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
207	<tr><td class="lineno" valign="top"></td><td class="left"> The core rules below are defined in Section 1.2.2 of [Part1]:</td><td> </td><td class="right"> The core rules below are defined in Section 1.2.2 of [Part1]:</td><td class="lineno" valign="top"></td></tr>
208	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
209	<tr><td><a name="diff0010" /></td></tr>
210	<tr><td class="lineno" valign="top"></td><td class="lblock"> OWS = <OWS, defined in [Part1], Section 1.2.2></td><td> </td><td class="rblock"> <span class="insert">quoted-string = <quoted-string, defined in [Part1], Section 1.2.2></span></td><td class="lineno" valign="top"></td></tr>
211	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> token = <token, defined in [Part1], Section 1.2.2></span></td><td class="lineno" valign="top"></td></tr>
212	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> OWS = <OWS, defined in [Part1], Section 1.2.2></td><td class="lineno" valign="top"></td></tr>
213	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
214	<tr><td><a name="diff0011" /></td></tr>
215	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">1.2.2. ABNF Rules defined in other Parts of the Specification</span></td><td> </td><td class="rblock"><span class="insert">2. Access Authentication Framework</span></td><td class="lineno" valign="top"></td></tr>
216	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
217	<tr><td><a name="diff0012" /></td></tr>
218	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">The ABNF rules below are defined in other specifications:</span></td><td> </td><td class="rblock"> <span class="insert">HTTP provides a simple challenge-response authentication mechanism</span></td><td class="lineno" valign="top"></td></tr>
219	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> that can be used by a server to challenge a client request and by a</span></td><td class="lineno" valign="top"></td></tr>
220	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> client to provide authentication information. It uses an extensible,</span></td><td class="lineno" valign="top"></td></tr>
221	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> case-insensitive token to identify the authentication scheme,</span></td><td class="lineno" valign="top"></td></tr>
222	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> followed by a comma-separated list of attribute-value pairs which</span></td><td class="lineno" valign="top"></td></tr>
223	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> carry the parameters necessary for achieving authentication via that</span></td><td class="lineno" valign="top"></td></tr>
224	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> scheme.</span></td><td class="lineno" valign="top"></td></tr>
225	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
226	<tr><td><a name="diff0013" /></td></tr>
227	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">challenge</span> = <span class="delete"><challenge, defined in [RFC2617], Section 1.2></span></td><td> </td><td class="rblock"> <span class="insert">auth-scheme</span> = <span class="insert">token</span></td><td class="lineno" valign="top"></td></tr>
228	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> credentials</span> = <span class="delete"><credentials, defined in [RFC2617], Section 1.2></span></td><td> </td><td class="rblock"><span class="insert"> auth-param</span> = <span class="insert">token "=" ( token / quoted-string )</span></td><td class="lineno" valign="top"></td></tr>
229	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
230	<tr><td><a name="diff0014" /></td></tr>
231	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">2. Status Code Definitions</span></td><td> </td><td class="rblock"> <span class="insert">The 401 (Unauthorized) response message is used by an origin server</span></td><td class="lineno" valign="top"></td></tr>
232	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> to challenge the authorization of a user agent. This response MUST</span></td><td class="lineno" valign="top"></td></tr>
233	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> include a WWW-Authenticate header field containing at least one</span></td><td class="lineno" valign="top"></td></tr>
234	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> challenge applicable to the requested resource. The 407 (Proxy</span></td><td class="lineno" valign="top"></td></tr>
235	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authentication Required) response message is used by a proxy to</span></td><td class="lineno" valign="top"></td></tr>
236	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> challenge the authorization of a client and MUST include a Proxy-</span></td><td class="lineno" valign="top"></td></tr>
237	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authenticate header field containing at least one challenge</span></td><td class="lineno" valign="top"></td></tr>
238	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> applicable to the proxy for the requested resource.</span></td><td class="lineno" valign="top"></td></tr>
239	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
240	<tr><td><a name="diff0015" /></td></tr>
241	<tr><td class="lineno" valign="top"></td><td class="lblock">2.1. 401 Unauthorized</td><td> </td><td class="rblock"> <span class="insert">challenge = auth-scheme 1*SP 1#auth-param</span></td><td class="lineno" valign="top"></td></tr>
242	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
243	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Note: User agents will need to take special care in parsing the</span></td><td class="lineno" valign="top"></td></tr>
244	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> WWW-Authenticate or Proxy-Authenticate header field value if it</span></td><td class="lineno" valign="top"></td></tr>
245	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> contains more than one challenge, or if more than one WWW-</span></td><td class="lineno" valign="top"></td></tr>
246	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authenticate header field is provided, since the contents of a</span></td><td class="lineno" valign="top"></td></tr>
247	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> challenge can itself contain a comma-separated list of</span></td><td class="lineno" valign="top"></td></tr>
248	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> authentication parameters.</span></td><td class="lineno" valign="top"></td></tr>
249	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
250	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Note: Many browsers fail to parse challenges containing unknown</span></td><td class="lineno" valign="top"></td></tr>
251	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> schemes. A workaround for this problem is to list well-supported</span></td><td class="lineno" valign="top"></td></tr>
252	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> schemes (such as "basic") first.</span></td><td class="lineno" valign="top"></td></tr>
253	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
254	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The authentication parameter realm is defined for all authentication</span></td><td class="lineno" valign="top"></td></tr>
255	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> schemes:</span></td><td class="lineno" valign="top"></td></tr>
256	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
257	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm = "realm" "=" realm-value</span></td><td class="lineno" valign="top"></td></tr>
258	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm-value = quoted-string</span></td><td class="lineno" valign="top"></td></tr>
259	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
260	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The realm directive (case-insensitive) is required for all</span></td><td class="lineno" valign="top"></td></tr>
261	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> authentication schemes that issue a challenge. The realm value</span></td><td class="lineno" valign="top"></td></tr>
262	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> (case-sensitive), in combination with the canonical root URI (the</span></td><td class="lineno" valign="top"></td></tr>
263	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> scheme and authority components of the effective request URI; see</span></td><td class="lineno" valign="top"></td></tr>
264	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Section 4.3 of [Part1]) of the server being accessed, defines the</span></td><td class="lineno" valign="top"></td></tr>
265	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> protection space. These realms allow the protected resources on a</span></td><td class="lineno" valign="top"></td></tr>
266	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> server to be partitioned into a set of protection spaces, each with</span></td><td class="lineno" valign="top"></td></tr>
267	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> its own authentication scheme and/or authorization database. The</span></td><td class="lineno" valign="top"></td></tr>
268	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm value is a string, generally assigned by the origin server,</span></td><td class="lineno" valign="top"></td></tr>
269	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> which can have additional semantics specific to the authentication</span></td><td class="lineno" valign="top"></td></tr>
270	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> scheme. Note that there can be multiple challenges with the same</span></td><td class="lineno" valign="top"></td></tr>
271	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> auth-scheme but different realms.</span></td><td class="lineno" valign="top"></td></tr>
272	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
273	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> A user agent that wishes to authenticate itself with an origin server</span></td><td class="lineno" valign="top"></td></tr>
274	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> -- usually, but not necessarily, after receiving a 401 (Unauthorized)</span></td><td class="lineno" valign="top"></td></tr>
275	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> -- MAY do so by including an Authorization header field with the</span></td><td class="lineno" valign="top"></td></tr>
276	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> request. A client that wishes to authenticate itself with a proxy --</span></td><td class="lineno" valign="top"></td></tr>
277	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> usually, but not necessarily, after receiving a 407 (Proxy</span></td><td class="lineno" valign="top"></td></tr>
278	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authentication Required) -- MAY do so by including a Proxy-</span></td><td class="lineno" valign="top"></td></tr>
279	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authorization header field with the request. Both the Authorization</span></td><td class="lineno" valign="top"></td></tr>
280	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> field value and the Proxy-Authorization field value consist of</span></td><td class="lineno" valign="top"></td></tr>
281	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> credentials containing the authentication information of the client</span></td><td class="lineno" valign="top"></td></tr>
282	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> for the realm of the resource being requested. The user agent MUST</span></td><td class="lineno" valign="top"></td></tr>
283	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> choose to use one of the challenges with the strongest auth-scheme it</span></td><td class="lineno" valign="top"></td></tr>
284	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> understands and request credentials from the user based upon that</span></td><td class="lineno" valign="top"></td></tr>
285	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> challenge.</span></td><td class="lineno" valign="top"></td></tr>
286	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
287	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> credentials = auth-scheme ( token</span></td><td class="lineno" valign="top"></td></tr>
288	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> / quoted-string</span></td><td class="lineno" valign="top"></td></tr>
289	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> / #auth-param )</span></td><td class="lineno" valign="top"></td></tr>
290	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
291	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The protection space determines the domain over which credentials can</span></td><td class="lineno" valign="top"></td></tr>
292	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> be automatically applied. If a prior request has been authorized,</span></td><td class="lineno" valign="top"></td></tr>
293	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> the same credentials MAY be reused for all other requests within that</span></td><td class="lineno" valign="top"></td></tr>
294	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> protection space for a period of time determined by the</span></td><td class="lineno" valign="top"></td></tr>
295	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> authentication scheme, parameters, and/or user preference. Unless</span></td><td class="lineno" valign="top"></td></tr>
296	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> otherwise defined by the authentication scheme, a single protection</span></td><td class="lineno" valign="top"></td></tr>
297	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> space cannot extend outside the scope of its server.</span></td><td class="lineno" valign="top"></td></tr>
298	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
299	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> If the origin server does not wish to accept the credentials sent</span></td><td class="lineno" valign="top"></td></tr>
300	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> with a request, it SHOULD return a 401 (Unauthorized) response. The</span></td><td class="lineno" valign="top"></td></tr>
301	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> response MUST include a WWW-Authenticate header field containing at</span></td><td class="lineno" valign="top"></td></tr>
302	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> least one (possibly new) challenge applicable to the requested</span></td><td class="lineno" valign="top"></td></tr>
303	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> resource. If a proxy does not accept the credentials sent with a</span></td><td class="lineno" valign="top"></td></tr>
304	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> request, it SHOULD return a 407 (Proxy Authentication Required). The</span></td><td class="lineno" valign="top"></td></tr>
305	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> response MUST include a Proxy-Authenticate header field containing a</span></td><td class="lineno" valign="top"></td></tr>
306	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> (possibly new) challenge applicable to the proxy for the requested</span></td><td class="lineno" valign="top"></td></tr>
307	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> resource.</span></td><td class="lineno" valign="top"></td></tr>
308	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
309	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The HTTP protocol does not restrict applications to this simple</span></td><td class="lineno" valign="top"></td></tr>
310	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> challenge-response mechanism for access authentication. Additional</span></td><td class="lineno" valign="top"></td></tr>
311	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> mechanisms MAY be used, such as encryption at the transport level or</span></td><td class="lineno" valign="top"></td></tr>
312	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> via message encapsulation, and with additional header fields</span></td><td class="lineno" valign="top"></td></tr>
313	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> specifying authentication information. However, these additional</span></td><td class="lineno" valign="top"></td></tr>
314	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> mechanisms are not defined by this specification.</span></td><td class="lineno" valign="top"></td></tr>
315	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
316	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Proxies MUST be completely transparent regarding user agent</span></td><td class="lineno" valign="top"></td></tr>
317	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> authentication by origin servers. That is, they MUST forward the</span></td><td class="lineno" valign="top"></td></tr>
318	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> WWW-Authenticate and Authorization headers untouched, and follow the</span></td><td class="lineno" valign="top"></td></tr>
319	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> rules found in Section 4.1. Both the Proxy-Authenticate and the</span></td><td class="lineno" valign="top"></td></tr>
320	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Proxy-Authorization header fields are hop-by-hop headers (see Section</span></td><td class="lineno" valign="top"></td></tr>
321	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> 7.1.3.1 of [Part1]).</span></td><td class="lineno" valign="top"></td></tr>
322	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> </td><td class="lineno" valign="top"></td></tr>
323	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock">2.1. <span class="insert">Authentication Scheme Registry</span></td><td class="lineno" valign="top"></td></tr>
324	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
325	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The HTTP Authentication Scheme Registry defines the name space for</span></td><td class="lineno" valign="top"></td></tr>
326	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> the authentication schemes in challenges and credentials.</span></td><td class="lineno" valign="top"></td></tr>
327	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
328	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Registrations MUST include the following fields:</span></td><td class="lineno" valign="top"></td></tr>
329	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
330	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> o Authentication Scheme Name</span></td><td class="lineno" valign="top"></td></tr>
331	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
332	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> o Pointer to specification text</span></td><td class="lineno" valign="top"></td></tr>
333	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
334	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Values to be added to this name space are subject to IETF review</span></td><td class="lineno" valign="top"></td></tr>
335	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> ([RFC5226], Section 4.1).</span></td><td class="lineno" valign="top"></td></tr>
336	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
337	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The registry itself is maintained at</span></td><td class="lineno" valign="top"></td></tr>
338	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> <http://www.iana.org/assignments/http-authschemes>.</span></td><td class="lineno" valign="top"></td></tr>
339	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
340	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert">3. Status Code Definitions</span></td><td class="lineno" valign="top"></td></tr>
341	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
342	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert">3.1.</span> 401 Unauthorized</td><td class="lineno" valign="top"></td></tr>
343	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
344	<tr><td class="lineno" valign="top"></td><td class="left"> The request requires user authentication. The response MUST include</td><td> </td><td class="right"> The request requires user authentication. The response MUST include</td><td class="lineno" valign="top"></td></tr>
345	<tr><td><a name="diff0016" /></td></tr>
346	<tr><td class="lineno" valign="top"></td><td class="lblock"> a WWW-Authenticate header field (Section <span class="delete">3</span>.4) containing a challenge</td><td> </td><td class="rblock"> a WWW-Authenticate header field (Section <span class="insert">4</span>.4) containing a challenge</td><td class="lineno" valign="top"></td></tr>
347	<tr><td class="lineno" valign="top"></td><td class="left"> applicable to the target resource. The client MAY repeat the request</td><td> </td><td class="right"> applicable to the target resource. The client MAY repeat the request</td><td class="lineno" valign="top"></td></tr>
348	<tr><td><a name="diff0017" /></td></tr>
349	<tr><td class="lineno" valign="top"></td><td class="lblock"> with a suitable Authorization header field (Section <span class="delete">3</span>.1). If the</td><td> </td><td class="rblock"> with a suitable Authorization header field (Section <span class="insert">4</span>.1). If the</td><td class="lineno" valign="top"></td></tr>
350	<tr><td class="lineno" valign="top"></td><td class="left"> request already included Authorization credentials, then the 401</td><td> </td><td class="right"> request already included Authorization credentials, then the 401</td><td class="lineno" valign="top"></td></tr>
351	<tr><td class="lineno" valign="top"></td><td class="left"> response indicates that authorization has been refused for those</td><td> </td><td class="right"> response indicates that authorization has been refused for those</td><td class="lineno" valign="top"></td></tr>
352	<tr><td class="lineno" valign="top"></td><td class="left"> credentials. If the 401 response contains the same challenge as the</td><td> </td><td class="right"> credentials. If the 401 response contains the same challenge as the</td><td class="lineno" valign="top"></td></tr>
353	<tr><td class="lineno" valign="top"></td><td class="left"> prior response, and the user agent has already attempted</td><td> </td><td class="right"> prior response, and the user agent has already attempted</td><td class="lineno" valign="top"></td></tr>
354	<tr><td class="lineno" valign="top"></td><td class="left"> authentication at least once, then the user SHOULD be presented the</td><td> </td><td class="right"> authentication at least once, then the user SHOULD be presented the</td><td class="lineno" valign="top"></td></tr>
355	<tr><td class="lineno" valign="top"></td><td class="left"> representation that was given in the response, since that</td><td> </td><td class="right"> representation that was given in the response, since that</td><td class="lineno" valign="top"></td></tr>
356	<tr><td><a name="diff0018" /></td></tr>
357	<tr><td class="lineno" valign="top"></td><td class="lblock"> representation might include relevant diagnostic information. <span class="delete">HTTP</span></td><td> </td><td class="rblock"> representation might include relevant diagnostic information.</td><td class="lineno" valign="top"></td></tr>
358	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> access authentication is explained in "HTTP Authentication: Basic and</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
359	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Digest Access Authentication" [RFC2617].</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
360	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
361	<tr><td><a name="diff0019" /></td></tr>
362	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">2</span>.2. 407 Proxy Authentication Required</td><td> </td><td class="rblock"><span class="insert">3</span>.2. 407 Proxy Authentication Required</td><td class="lineno" valign="top"></td></tr>
363	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
364	<tr><td class="lineno" valign="top"></td><td class="left"> This code is similar to 401 (Unauthorized), but indicates that the</td><td> </td><td class="right"> This code is similar to 401 (Unauthorized), but indicates that the</td><td class="lineno" valign="top"></td></tr>
365	<tr><td><a name="diff0020" /></td></tr>
366	<tr><td class="lineno" valign="top"></td><td class="lblock"> client <span class="delete">must</span> first authenticate itself with the proxy. The proxy MUST</td><td> </td><td class="rblock"> client <span class="insert">ought to</span> first authenticate itself with the proxy. The proxy</td><td class="lineno" valign="top"></td></tr>
367	<tr><td class="lineno" valign="top"></td><td class="lblock"> return a Proxy-Authenticate header field (Section <span class="delete">3.2)</span> containing a</td><td> </td><td class="rblock"> MUST return a Proxy-Authenticate header field (Section <span class="insert">4.2)</span></td><td class="lineno" valign="top"></td></tr>
368	<tr><td class="lineno" valign="top"></td><td class="lblock"> challenge applicable to the proxy for the target resource. The</td><td> </td><td class="rblock"> containing a challenge applicable to the proxy for the target</td><td class="lineno" valign="top"></td></tr>
369	<tr><td class="lineno" valign="top"></td><td class="lblock"> client MAY repeat the request with a suitable <span class="delete">Proxy-Authorization</span></td><td> </td><td class="rblock"> resource. The client MAY repeat the request with a suitable <span class="insert">Proxy-</span></td><td class="lineno" valign="top"></td></tr>
370	<tr><td class="lineno" valign="top"></td><td class="lblock"> header field (Section <span class="delete">3.3). HTTP access authentication is explained</span></td><td> </td><td class="rblock"><span class="insert"> Authorization</span> header field (Section <span class="insert">4.3).</span></td><td class="lineno" valign="top"></td></tr>
371	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> in "HTTP Authentication: Basic and Digest Access Authentication"</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
372	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> [RFC2617].</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
373	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
374	<tr><td><a name="diff0021" /></td></tr>
375	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">3</span>. Header Field Definitions</td><td> </td><td class="rblock"><span class="insert">4</span>. Header Field Definitions</td><td class="lineno" valign="top"></td></tr>
376	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
377	<tr><td class="lineno" valign="top"></td><td class="left"> This section defines the syntax and semantics of HTTP/1.1 header</td><td> </td><td class="right"> This section defines the syntax and semantics of HTTP/1.1 header</td><td class="lineno" valign="top"></td></tr>
378	<tr><td class="lineno" valign="top"></td><td class="left"> fields related to authentication.</td><td> </td><td class="right"> fields related to authentication.</td><td class="lineno" valign="top"></td></tr>
379	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
380	<tr><td><a name="diff0022" /></td></tr>
381	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">3</span>.1. Authorization</td><td> </td><td class="rblock"><span class="insert">4</span>.1. Authorization</td><td class="lineno" valign="top"></td></tr>
382	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
383	<tr><td class="lineno" valign="top"></td><td class="left"> The "Authorization" request-header field allows a user agent to</td><td> </td><td class="right"> The "Authorization" request-header field allows a user agent to</td><td class="lineno" valign="top"></td></tr>
384	<tr><td class="lineno" valign="top"></td><td class="left"> authenticate itself with a server -- usually, but not necessarily,</td><td> </td><td class="right"> authenticate itself with a server -- usually, but not necessarily,</td><td class="lineno" valign="top"></td></tr>
385	<tr><td class="lineno" valign="top"></td><td class="left"> after receiving a 401 (Unauthorized) response. Its value consists of</td><td> </td><td class="right"> after receiving a 401 (Unauthorized) response. Its value consists of</td><td class="lineno" valign="top"></td></tr>
386	<tr><td class="lineno" valign="top"></td><td class="left"> credentials containing information of the user agent for the realm of</td><td> </td><td class="right"> credentials containing information of the user agent for the realm of</td><td class="lineno" valign="top"></td></tr>
387	<tr><td class="lineno" valign="top"></td><td class="left"> the resource being requested.</td><td> </td><td class="right"> the resource being requested.</td><td class="lineno" valign="top"></td></tr>
388	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
389	<tr><td class="lineno" valign="top"></td><td class="left"> Authorization = "Authorization" ":" OWS Authorization-v</td><td> </td><td class="right"> Authorization = "Authorization" ":" OWS Authorization-v</td><td class="lineno" valign="top"></td></tr>
390	<tr><td class="lineno" valign="top"></td><td class="left"> Authorization-v = credentials</td><td> </td><td class="right"> Authorization-v = credentials</td><td class="lineno" valign="top"></td></tr>
391	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
392	<tr><td><a name="diff0023" /></td></tr>
393	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">HTTP access authentication is described in "HTTP Authentication:</span></td><td> </td><td class="rblock"> If a request is authenticated and a realm specified, the same</td><td class="lineno" valign="top"></td></tr>
394	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Basic and Digest Access Authentication" [RFC2617].</span> If a request is</td><td> </td><td class="rblock"> credentials SHOULD be valid for all other requests within this realm</td><td class="lineno" valign="top"></td></tr>
395	<tr><td class="lineno" valign="top"></td><td class="lblock"> authenticated and a realm specified, the same credentials SHOULD be</td><td> </td><td class="rblock"> (assuming that the authentication scheme itself does not require</td><td class="lineno" valign="top"></td></tr>
396	<tr><td class="lineno" valign="top"></td><td class="lblock"> valid for all other requests within this realm (assuming that the</td><td> </td><td class="rblock"> otherwise, such as credentials that vary according to a challenge</td><td class="lineno" valign="top"></td></tr>
397	<tr><td class="lineno" valign="top"></td><td class="lblock"> authentication scheme itself does not require otherwise, such as</td><td> </td><td class="rblock"> value or using synchronized clocks).</td><td class="lineno" valign="top"></td></tr>
398	<tr><td class="lineno" valign="top"></td><td class="lblock"> credentials that vary according to a challenge value or using</td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
399	<tr><td class="lineno" valign="top"></td><td class="lblock"> synchronized clocks).</td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
400	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
401	<tr><td class="lineno" valign="top"></td><td class="left"> When a shared cache (see Section 1.2 of [Part6]) receives a request</td><td> </td><td class="right"> When a shared cache (see Section 1.2 of [Part6]) receives a request</td><td class="lineno" valign="top"></td></tr>
402	<tr><td class="lineno" valign="top"></td><td class="left"> containing an Authorization field, it MUST NOT return the</td><td> </td><td class="right"> containing an Authorization field, it MUST NOT return the</td><td class="lineno" valign="top"></td></tr>
403	<tr><td class="lineno" valign="top"></td><td class="left"> corresponding response as a reply to any other request, unless one of</td><td> </td><td class="right"> corresponding response as a reply to any other request, unless one of</td><td class="lineno" valign="top"></td></tr>
404	<tr><td class="lineno" valign="top"></td><td class="left"> the following specific exceptions holds:</td><td> </td><td class="right"> the following specific exceptions holds:</td><td class="lineno" valign="top"></td></tr>
405	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
406	<tr><td class="lineno" valign="top"></td><td class="left"> 1. If the response includes the "s-maxage" cache-control directive,</td><td> </td><td class="right"> 1. If the response includes the "s-maxage" cache-control directive,</td><td class="lineno" valign="top"></td></tr>
407	<tr><td class="lineno" valign="top"></td><td class="left"> the cache MAY use that response in replying to a subsequent</td><td> </td><td class="right"> the cache MAY use that response in replying to a subsequent</td><td class="lineno" valign="top"></td></tr>
408	<tr><td class="lineno" valign="top"></td><td class="left"> request. But (if the specified maximum age has passed) a proxy</td><td> </td><td class="right"> request. But (if the specified maximum age has passed) a proxy</td><td class="lineno" valign="top"></td></tr>
409	<tr><td class="lineno" valign="top"></td><td class="left"> cache MUST first revalidate it with the origin server, using the</td><td> </td><td class="right"> cache MUST first revalidate it with the origin server, using the</td><td class="lineno" valign="top"></td></tr>
410	<tr><td><a name="diff0024" /></td></tr>
411	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">request-headers</span> from the new request to allow the origin server</td><td> </td><td class="rblock"> <span class="insert">request-header fields</span> from the new request to allow the origin</td><td class="lineno" valign="top"></td></tr>
412	<tr><td class="lineno" valign="top"></td><td class="lblock"> to authenticate the new request. (This is the defined behavior</td><td> </td><td class="rblock"> server to authenticate the new request. (This is the defined</td><td class="lineno" valign="top"></td></tr>
413	<tr><td class="lineno" valign="top"></td><td class="lblock"> for s-maxage.) If the response includes "s-maxage=0", the proxy</td><td> </td><td class="rblock"> behavior for s-maxage.) If the response includes "s-maxage=0",</td><td class="lineno" valign="top"></td></tr>
414	<tr><td class="lineno" valign="top"></td><td class="lblock"> MUST always revalidate it before re-using it.</td><td> </td><td class="rblock"> the proxy MUST always revalidate it before re-using it.</td><td class="lineno" valign="top"></td></tr>
415	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
416	<tr><td class="lineno" valign="top"></td><td class="left"> 2. If the response includes the "must-revalidate" cache-control</td><td> </td><td class="right"> 2. If the response includes the "must-revalidate" cache-control</td><td class="lineno" valign="top"></td></tr>
417	<tr><td class="lineno" valign="top"></td><td class="left"> directive, the cache MAY use that response in replying to a</td><td> </td><td class="right"> directive, the cache MAY use that response in replying to a</td><td class="lineno" valign="top"></td></tr>
418	<tr><td class="lineno" valign="top"></td><td class="left"> subsequent request. But if the response is stale, all caches</td><td> </td><td class="right"> subsequent request. But if the response is stale, all caches</td><td class="lineno" valign="top"></td></tr>
419	<tr><td class="lineno" valign="top"></td><td class="left"> MUST first revalidate it with the origin server, using the</td><td> </td><td class="right"> MUST first revalidate it with the origin server, using the</td><td class="lineno" valign="top"></td></tr>
420	<tr><td><a name="diff0025" /></td></tr>
421	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">request-headers</span> from the new request to allow the origin server</td><td> </td><td class="rblock"> <span class="insert">request-header fields</span> from the new request to allow the origin</td><td class="lineno" valign="top"></td></tr>
422	<tr><td class="lineno" valign="top"></td><td class="lblock"> to authenticate the new request.</td><td> </td><td class="rblock"> server to authenticate the new request.</td><td class="lineno" valign="top"></td></tr>
423	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
424	<tr><td class="lineno" valign="top"></td><td class="left"> 3. If the response includes the "public" cache-control directive, it</td><td> </td><td class="right"> 3. If the response includes the "public" cache-control directive, it</td><td class="lineno" valign="top"></td></tr>
425	<tr><td class="lineno" valign="top"></td><td class="left"> MAY be returned in reply to any subsequent request.</td><td> </td><td class="right"> MAY be returned in reply to any subsequent request.</td><td class="lineno" valign="top"></td></tr>
426	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
427	<tr><td><a name="diff0026" /></td></tr>
428	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">3</span>.2. Proxy-Authenticate</td><td> </td><td class="rblock"><span class="insert">4</span>.2. Proxy-Authenticate</td><td class="lineno" valign="top"></td></tr>
429	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
430	<tr><td class="lineno" valign="top"></td><td class="left"> The "Proxy-Authenticate" response-header field consists of a</td><td> </td><td class="right"> The "Proxy-Authenticate" response-header field consists of a</td><td class="lineno" valign="top"></td></tr>
431	<tr><td class="lineno" valign="top"></td><td class="left"> challenge that indicates the authentication scheme and parameters</td><td> </td><td class="right"> challenge that indicates the authentication scheme and parameters</td><td class="lineno" valign="top"></td></tr>
432	<tr><td class="lineno" valign="top"></td><td class="left"> applicable to the proxy for this effective request URI (Section 4.3</td><td> </td><td class="right"> applicable to the proxy for this effective request URI (Section 4.3</td><td class="lineno" valign="top"></td></tr>
433	<tr><td class="lineno" valign="top"></td><td class="left"> of [Part1]). It MUST be included as part of a 407 (Proxy</td><td> </td><td class="right"> of [Part1]). It MUST be included as part of a 407 (Proxy</td><td class="lineno" valign="top"></td></tr>
434	<tr><td class="lineno" valign="top"></td><td class="left"> Authentication Required) response.</td><td> </td><td class="right"> Authentication Required) response.</td><td class="lineno" valign="top"></td></tr>
435	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
436	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authenticate = "Proxy-Authenticate" ":" OWS</td><td> </td><td class="right"> Proxy-Authenticate = "Proxy-Authenticate" ":" OWS</td><td class="lineno" valign="top"></td></tr>
437	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authenticate-v</td><td> </td><td class="right"> Proxy-Authenticate-v</td><td class="lineno" valign="top"></td></tr>
438	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authenticate-v = 1#challenge</td><td> </td><td class="right"> Proxy-Authenticate-v = 1#challenge</td><td class="lineno" valign="top"></td></tr>
439	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
440	<tr><td><a name="diff0027" /></td></tr>
441	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">The HTTP access authentication process is described in "HTTP</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
442	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Authentication: Basic and Digest Access Authentication" [RFC2617].</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
443	<tr><td class="lineno" valign="top"></td><td class="left"> Unlike WWW-Authenticate, the Proxy-Authenticate header field applies</td><td> </td><td class="right"> Unlike WWW-Authenticate, the Proxy-Authenticate header field applies</td><td class="lineno" valign="top"></td></tr>
444	<tr><td class="lineno" valign="top"></td><td class="left"> only to the current connection and SHOULD NOT be passed on to</td><td> </td><td class="right"> only to the current connection and SHOULD NOT be passed on to</td><td class="lineno" valign="top"></td></tr>
445	<tr><td class="lineno" valign="top"></td><td class="left"> downstream clients. However, an intermediate proxy might need to</td><td> </td><td class="right"> downstream clients. However, an intermediate proxy might need to</td><td class="lineno" valign="top"></td></tr>
446	<tr><td class="lineno" valign="top"></td><td class="left"> obtain its own credentials by requesting them from the downstream</td><td> </td><td class="right"> obtain its own credentials by requesting them from the downstream</td><td class="lineno" valign="top"></td></tr>
447	<tr><td class="lineno" valign="top"></td><td class="left"> client, which in some circumstances will appear as if the proxy is</td><td> </td><td class="right"> client, which in some circumstances will appear as if the proxy is</td><td class="lineno" valign="top"></td></tr>
448	<tr><td class="lineno" valign="top"></td><td class="left"> forwarding the Proxy-Authenticate header field.</td><td> </td><td class="right"> forwarding the Proxy-Authenticate header field.</td><td class="lineno" valign="top"></td></tr>
449	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
450	<tr><td><a name="diff0028" /></td></tr>
451	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">3</span>.3. Proxy-Authorization</td><td> </td><td class="rblock"><span class="insert">4</span>.3. Proxy-Authorization</td><td class="lineno" valign="top"></td></tr>
452	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
453	<tr><td class="lineno" valign="top"></td><td class="left"> The "Proxy-Authorization" request-header field allows the client to</td><td> </td><td class="right"> The "Proxy-Authorization" request-header field allows the client to</td><td class="lineno" valign="top"></td></tr>
454	<tr><td class="lineno" valign="top"></td><td class="left"> identify itself (or its user) to a proxy which requires</td><td> </td><td class="right"> identify itself (or its user) to a proxy which requires</td><td class="lineno" valign="top"></td></tr>
455	<tr><td class="lineno" valign="top"></td><td class="left"> authentication. Its value consists of credentials containing the</td><td> </td><td class="right"> authentication. Its value consists of credentials containing the</td><td class="lineno" valign="top"></td></tr>
456	<tr><td class="lineno" valign="top"></td><td class="left"> authentication information of the user agent for the proxy and/or</td><td> </td><td class="right"> authentication information of the user agent for the proxy and/or</td><td class="lineno" valign="top"></td></tr>
457	<tr><td class="lineno" valign="top"></td><td class="left"> realm of the resource being requested.</td><td> </td><td class="right"> realm of the resource being requested.</td><td class="lineno" valign="top"></td></tr>
458	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
459	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authorization = "Proxy-Authorization" ":" OWS</td><td> </td><td class="right"> Proxy-Authorization = "Proxy-Authorization" ":" OWS</td><td class="lineno" valign="top"></td></tr>
460	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authorization-v</td><td> </td><td class="right"> Proxy-Authorization-v</td><td class="lineno" valign="top"></td></tr>
461	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authorization-v = credentials</td><td> </td><td class="right"> Proxy-Authorization-v = credentials</td><td class="lineno" valign="top"></td></tr>
462	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
463	<tr><td><a name="diff0029" /></td></tr>
464	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">The HTTP access authentication process is described in "HTTP</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
465	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Authentication: Basic and Digest Access Authentication" [RFC2617].</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
466	<tr><td class="lineno" valign="top"></td><td class="left"> Unlike Authorization, the Proxy-Authorization header field applies</td><td> </td><td class="right"> Unlike Authorization, the Proxy-Authorization header field applies</td><td class="lineno" valign="top"></td></tr>
467	<tr><td class="lineno" valign="top"></td><td class="left"> only to the next outbound proxy that demanded authentication using</td><td> </td><td class="right"> only to the next outbound proxy that demanded authentication using</td><td class="lineno" valign="top"></td></tr>
468	<tr><td class="lineno" valign="top"></td><td class="left"> the Proxy-Authenticate field. When multiple proxies are used in a</td><td> </td><td class="right"> the Proxy-Authenticate field. When multiple proxies are used in a</td><td class="lineno" valign="top"></td></tr>
469	<tr><td class="lineno" valign="top"></td><td class="left"> chain, the Proxy-Authorization header field is consumed by the first</td><td> </td><td class="right"> chain, the Proxy-Authorization header field is consumed by the first</td><td class="lineno" valign="top"></td></tr>
470	<tr><td class="lineno" valign="top"></td><td class="left"> outbound proxy that was expecting to receive credentials. A proxy</td><td> </td><td class="right"> outbound proxy that was expecting to receive credentials. A proxy</td><td class="lineno" valign="top"></td></tr>
471	<tr><td class="lineno" valign="top"></td><td class="left"> MAY relay the credentials from the client request to the next proxy</td><td> </td><td class="right"> MAY relay the credentials from the client request to the next proxy</td><td class="lineno" valign="top"></td></tr>
472	<tr><td class="lineno" valign="top"></td><td class="left"> if that is the mechanism by which the proxies cooperatively</td><td> </td><td class="right"> if that is the mechanism by which the proxies cooperatively</td><td class="lineno" valign="top"></td></tr>
473	<tr><td class="lineno" valign="top"></td><td class="left"> authenticate a given request.</td><td> </td><td class="right"> authenticate a given request.</td><td class="lineno" valign="top"></td></tr>
474	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
475	<tr><td><a name="diff0030" /></td></tr>
476	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">3</span>.4. WWW-Authenticate</td><td> </td><td class="rblock"><span class="insert">4</span>.4. WWW-Authenticate</td><td class="lineno" valign="top"></td></tr>
477	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
478	<tr><td class="lineno" valign="top"></td><td class="left"> The "WWW-Authenticate" response-header field consists of at least one</td><td> </td><td class="right"> The "WWW-Authenticate" response-header field consists of at least one</td><td class="lineno" valign="top"></td></tr>
479	<tr><td class="lineno" valign="top"></td><td class="left"> challenge that indicates the authentication scheme(s) and parameters</td><td> </td><td class="right"> challenge that indicates the authentication scheme(s) and parameters</td><td class="lineno" valign="top"></td></tr>
480	<tr><td class="lineno" valign="top"></td><td class="left"> applicable to the effective request URI (Section 4.3 of [Part1]). It</td><td> </td><td class="right"> applicable to the effective request URI (Section 4.3 of [Part1]). It</td><td class="lineno" valign="top"></td></tr>
481	<tr><td class="lineno" valign="top"></td><td class="left"> MUST be included in 401 (Unauthorized) response messages.</td><td> </td><td class="right"> MUST be included in 401 (Unauthorized) response messages.</td><td class="lineno" valign="top"></td></tr>
482	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
483	<tr><td class="lineno" valign="top"></td><td class="left"> WWW-Authenticate = "WWW-Authenticate" ":" OWS WWW-Authenticate-v</td><td> </td><td class="right"> WWW-Authenticate = "WWW-Authenticate" ":" OWS WWW-Authenticate-v</td><td class="lineno" valign="top"></td></tr>
484	<tr><td class="lineno" valign="top"></td><td class="left"> WWW-Authenticate-v = 1#challenge</td><td> </td><td class="right"> WWW-Authenticate-v = 1#challenge</td><td class="lineno" valign="top"></td></tr>
485	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
486	<tr><td><a name="diff0031" /></td></tr>
487	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">The HTTP access authentication process is described in "HTTP</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
488	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Authentication: Basic and Digest Access Authentication" [RFC2617].</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
489	<tr><td class="lineno" valign="top"></td><td class="left"> User agents are advised to take special care in parsing the WWW-</td><td> </td><td class="right"> User agents are advised to take special care in parsing the WWW-</td><td class="lineno" valign="top"></td></tr>
490	<tr><td class="lineno" valign="top"></td><td class="left"> Authenticate field value as it might contain more than one challenge,</td><td> </td><td class="right"> Authenticate field value as it might contain more than one challenge,</td><td class="lineno" valign="top"></td></tr>
491	<tr><td class="lineno" valign="top"></td><td class="left"> or if more than one WWW-Authenticate header field is provided, the</td><td> </td><td class="right"> or if more than one WWW-Authenticate header field is provided, the</td><td class="lineno" valign="top"></td></tr>
492	<tr><td class="lineno" valign="top"></td><td class="left"> contents of a challenge itself can contain a comma-separated list of</td><td> </td><td class="right"> contents of a challenge itself can contain a comma-separated list of</td><td class="lineno" valign="top"></td></tr>
493	<tr><td class="lineno" valign="top"></td><td class="left"> authentication parameters.</td><td> </td><td class="right"> authentication parameters.</td><td class="lineno" valign="top"></td></tr>
494	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
495	<tr><td><a name="diff0032" /></td></tr>
496	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">4</span>. IANA Considerations</td><td> </td><td class="rblock"><span class="insert">5</span>. IANA Considerations</td><td class="lineno" valign="top"></td></tr>
497	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
498	<tr><td><a name="diff0033" /></td></tr>
499	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">4.1.</span> Status Code Registration</td><td> </td><td class="rblock"><span class="insert">5.1. Authenticaton Scheme Registry</span></td><td class="lineno" valign="top"></td></tr>
500	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
501	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The registration procedure for HTTP Authentication Schemes is defined</span></td><td class="lineno" valign="top"></td></tr>
502	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> by Section 2.1 of this document.</span></td><td class="lineno" valign="top"></td></tr>
503	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
504	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The HTTP Method Authentication Scheme shall be created at</span></td><td class="lineno" valign="top"></td></tr>
505	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> <http://www.iana.org/assignments/http-authschemes>.</span></td><td class="lineno" valign="top"></td></tr>
506	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
507	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert">5.2.</span> Status Code Registration</td><td class="lineno" valign="top"></td></tr>
508	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
509	<tr><td class="lineno" valign="top"></td><td class="left"> The HTTP Status Code Registry located at</td><td> </td><td class="right"> The HTTP Status Code Registry located at</td><td class="lineno" valign="top"></td></tr>
510	<tr><td class="lineno" valign="top"></td><td class="left"> <http://www.iana.org/assignments/http-status-codes> shall be updated</td><td> </td><td class="right"> <http://www.iana.org/assignments/http-status-codes> shall be updated</td><td class="lineno" valign="top"></td></tr>
511	<tr><td class="lineno" valign="top"></td><td class="left"> with the registrations below:</td><td> </td><td class="right"> with the registrations below:</td><td class="lineno" valign="top"></td></tr>
512	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
513	<tr><td class="lineno" valign="top"></td><td class="left"> +-------+-------------------------------+-------------+</td><td> </td><td class="right"> +-------+-------------------------------+-------------+</td><td class="lineno" valign="top"></td></tr>
514	<tr><td class="lineno" valign="top"></td><td class="left"> \| Value \| Description \| Reference \|</td><td> </td><td class="right"> \| Value \| Description \| Reference \|</td><td class="lineno" valign="top"></td></tr>
515	<tr><td class="lineno" valign="top"></td><td class="left"> +-------+-------------------------------+-------------+</td><td> </td><td class="right"> +-------+-------------------------------+-------------+</td><td class="lineno" valign="top"></td></tr>
516	<tr><td><a name="diff0034" /></td></tr>
517	<tr><td class="lineno" valign="top"></td><td class="lblock"> \| 401 \| Unauthorized \| Section <span class="delete">2.1</span> \|</td><td> </td><td class="rblock"> \| 401 \| Unauthorized \| Section <span class="insert">3.1</span> \|</td><td class="lineno" valign="top"></td></tr>
518	<tr><td class="lineno" valign="top"></td><td class="lblock"> \| 407 \| Proxy Authentication Required \| Section <span class="delete">2.2</span> \|</td><td> </td><td class="rblock"> \| 407 \| Proxy Authentication Required \| Section <span class="insert">3.2</span> \|</td><td class="lineno" valign="top"></td></tr>
519	<tr><td class="lineno" valign="top"></td><td class="left"> +-------+-------------------------------+-------------+</td><td> </td><td class="right"> +-------+-------------------------------+-------------+</td><td class="lineno" valign="top"></td></tr>
520	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
521	<tr><td><a name="diff0035" /></td></tr>
522	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">4.2</span>. Header Field Registration</td><td> </td><td class="rblock"><span class="insert">5.3</span>. Header Field Registration</td><td class="lineno" valign="top"></td></tr>
523	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
524	<tr><td class="lineno" valign="top"></td><td class="left"> The Message Header Field Registry located at <http://www.iana.org/</td><td> </td><td class="right"> The Message Header Field Registry located at <http://www.iana.org/</td><td class="lineno" valign="top"></td></tr>
525	<tr><td class="lineno" valign="top"></td><td class="left"> assignments/message-headers/message-header-index.html> shall be</td><td> </td><td class="right"> assignments/message-headers/message-header-index.html> shall be</td><td class="lineno" valign="top"></td></tr>
526	<tr><td class="lineno" valign="top"></td><td class="left"> updated with the permanent registrations below (see [RFC3864]):</td><td> </td><td class="right"> updated with the permanent registrations below (see [RFC3864]):</td><td class="lineno" valign="top"></td></tr>
527	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
528	<tr><td class="lineno" valign="top"></td><td class="left"> +---------------------+----------+----------+-------------+</td><td> </td><td class="right"> +---------------------+----------+----------+-------------+</td><td class="lineno" valign="top"></td></tr>
529	<tr><td class="lineno" valign="top"></td><td class="left"> \| Header Field Name \| Protocol \| Status \| Reference \|</td><td> </td><td class="right"> \| Header Field Name \| Protocol \| Status \| Reference \|</td><td class="lineno" valign="top"></td></tr>
530	<tr><td class="lineno" valign="top"></td><td class="left"> +---------------------+----------+----------+-------------+</td><td> </td><td class="right"> +---------------------+----------+----------+-------------+</td><td class="lineno" valign="top"></td></tr>
531	<tr><td><a name="diff0036" /></td></tr>
532	<tr><td class="lineno" valign="top"></td><td class="lblock"> \| Authorization \| http \| standard \| Section <span class="delete">3.1</span> \|</td><td> </td><td class="rblock"> \| Authorization \| http \| standard \| Section <span class="insert">4.1</span> \|</td><td class="lineno" valign="top"></td></tr>
533	<tr><td class="lineno" valign="top"></td><td class="lblock"> \| Proxy-Authenticate \| http \| standard \| Section <span class="delete">3.2</span> \|</td><td> </td><td class="rblock"> \| Proxy-Authenticate \| http \| standard \| Section <span class="insert">4.2</span> \|</td><td class="lineno" valign="top"></td></tr>
534	<tr><td class="lineno" valign="top"></td><td class="lblock"> \| Proxy-Authorization \| http \| standard \| Section <span class="delete">3.3</span> \|</td><td> </td><td class="rblock"> \| Proxy-Authorization \| http \| standard \| Section <span class="insert">4.3</span> \|</td><td class="lineno" valign="top"></td></tr>
535	<tr><td class="lineno" valign="top"></td><td class="lblock"> \| WWW-Authenticate \| http \| standard \| Section <span class="delete">3.4</span> \|</td><td> </td><td class="rblock"> \| WWW-Authenticate \| http \| standard \| Section <span class="insert">4.4</span> \|</td><td class="lineno" valign="top"></td></tr>
536	<tr><td class="lineno" valign="top"></td><td class="left"> +---------------------+----------+----------+-------------+</td><td> </td><td class="right"> +---------------------+----------+----------+-------------+</td><td class="lineno" valign="top"></td></tr>
537	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
538	<tr><td class="lineno" valign="top"></td><td class="left"> The change controller is: "IETF (iesg@ietf.org) - Internet</td><td> </td><td class="right"> The change controller is: "IETF (iesg@ietf.org) - Internet</td><td class="lineno" valign="top"></td></tr>
539	<tr><td class="lineno" valign="top"></td><td class="left"> Engineering Task Force".</td><td> </td><td class="right"> Engineering Task Force".</td><td class="lineno" valign="top"></td></tr>
540	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
541	<tr><td><a name="diff0037" /></td></tr>
542	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">5</span>. Security Considerations</td><td> </td><td class="rblock"><span class="insert">6</span>. Security Considerations</td><td class="lineno" valign="top"></td></tr>
543	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
544	<tr><td class="lineno" valign="top"></td><td class="left"> This section is meant to inform application developers, information</td><td> </td><td class="right"> This section is meant to inform application developers, information</td><td class="lineno" valign="top"></td></tr>
545	<tr><td class="lineno" valign="top"></td><td class="left"> providers, and users of the security limitations in HTTP/1.1 as</td><td> </td><td class="right"> providers, and users of the security limitations in HTTP/1.1 as</td><td class="lineno" valign="top"></td></tr>
546	<tr><td class="lineno" valign="top"></td><td class="left"> described by this document. The discussion does not include</td><td> </td><td class="right"> described by this document. The discussion does not include</td><td class="lineno" valign="top"></td></tr>
547	<tr><td class="lineno" valign="top"></td><td class="left"> definitive solutions to the problems revealed, though it does make</td><td> </td><td class="right"> definitive solutions to the problems revealed, though it does make</td><td class="lineno" valign="top"></td></tr>
548	<tr><td class="lineno" valign="top"></td><td class="left"> some suggestions for reducing security risks.</td><td> </td><td class="right"> some suggestions for reducing security risks.</td><td class="lineno" valign="top"></td></tr>
549	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
550	<tr><td><a name="diff0038" /></td></tr>
551	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">5</span>.1. Authentication Credentials and Idle Clients</td><td> </td><td class="rblock"><span class="insert">6</span>.1. Authentication Credentials and Idle Clients</td><td class="lineno" valign="top"></td></tr>
552	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
553	<tr><td class="lineno" valign="top"></td><td class="left"> Existing HTTP clients and user agents typically retain authentication</td><td> </td><td class="right"> Existing HTTP clients and user agents typically retain authentication</td><td class="lineno" valign="top"></td></tr>
554	<tr><td class="lineno" valign="top"></td><td class="left"> information indefinitely. HTTP/1.1 does not provide a method for a</td><td> </td><td class="right"> information indefinitely. HTTP/1.1 does not provide a method for a</td><td class="lineno" valign="top"></td></tr>
555	<tr><td class="lineno" valign="top"></td><td class="left"> server to direct clients to discard these cached credentials. This</td><td> </td><td class="right"> server to direct clients to discard these cached credentials. This</td><td class="lineno" valign="top"></td></tr>
556	<tr><td class="lineno" valign="top"></td><td class="left"> is a significant defect that requires further extensions to HTTP.</td><td> </td><td class="right"> is a significant defect that requires further extensions to HTTP.</td><td class="lineno" valign="top"></td></tr>
557	<tr><td class="lineno" valign="top"></td><td class="left"> Circumstances under which credential caching can interfere with the</td><td> </td><td class="right"> Circumstances under which credential caching can interfere with the</td><td class="lineno" valign="top"></td></tr>
558	<tr><td class="lineno" valign="top"></td><td class="left"> application's security model include but are not limited to:</td><td> </td><td class="right"> application's security model include but are not limited to:</td><td class="lineno" valign="top"></td></tr>
559	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
560	<tr><td class="lineno" valign="top"></td><td class="left"> o Clients which have been idle for an extended period following</td><td> </td><td class="right"> o Clients which have been idle for an extended period following</td><td class="lineno" valign="top"></td></tr>
561	<tr><td class="lineno" valign="top"></td><td class="left"> which the server might wish to cause the client to reprompt the</td><td> </td><td class="right"> which the server might wish to cause the client to reprompt the</td><td class="lineno" valign="top"></td></tr>
562	<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
563	<tr bgcolor="gray" ><td></td><th><a name="part-l4" /><small>skipping to change at</small><em> page 9, line 31</em></th><th> </th><th><a name="part-r4" /><small>skipping to change at</small><em> page 12, line 5</em></th><td></td></tr>
564	<tr><td class="lineno" valign="top"></td><td class="left"> for the client to retain the credentials.</td><td> </td><td class="right"> for the client to retain the credentials.</td><td class="lineno" valign="top"></td></tr>
565	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
566	<tr><td class="lineno" valign="top"></td><td class="left"> This is currently under separate study. There are a number of work-</td><td> </td><td class="right"> This is currently under separate study. There are a number of work-</td><td class="lineno" valign="top"></td></tr>
567	<tr><td class="lineno" valign="top"></td><td class="left"> arounds to parts of this problem, and we encourage the use of</td><td> </td><td class="right"> arounds to parts of this problem, and we encourage the use of</td><td class="lineno" valign="top"></td></tr>
568	<tr><td class="lineno" valign="top"></td><td class="left"> password protection in screen savers, idle time-outs, and other</td><td> </td><td class="right"> password protection in screen savers, idle time-outs, and other</td><td class="lineno" valign="top"></td></tr>
569	<tr><td class="lineno" valign="top"></td><td class="left"> methods which mitigate the security problems inherent in this</td><td> </td><td class="right"> methods which mitigate the security problems inherent in this</td><td class="lineno" valign="top"></td></tr>
570	<tr><td class="lineno" valign="top"></td><td class="left"> problem. In particular, user agents which cache credentials are</td><td> </td><td class="right"> problem. In particular, user agents which cache credentials are</td><td class="lineno" valign="top"></td></tr>
571	<tr><td class="lineno" valign="top"></td><td class="left"> encouraged to provide a readily accessible mechanism for discarding</td><td> </td><td class="right"> encouraged to provide a readily accessible mechanism for discarding</td><td class="lineno" valign="top"></td></tr>
572	<tr><td class="lineno" valign="top"></td><td class="left"> cached credentials under user control.</td><td> </td><td class="right"> cached credentials under user control.</td><td class="lineno" valign="top"></td></tr>
573	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
574	<tr><td><a name="diff0039" /></td></tr>
575	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">6</span>. Acknowledgments</td><td> </td><td class="rblock"><span class="insert">7</span>. Acknowledgments</td><td class="lineno" valign="top"></td></tr>
576	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
577	<tr><td><a name="diff0040" /></td></tr>
578	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">[[acks: TBD.]]</span></td><td> </td><td class="rblock"> <span class="insert">This specification takes over the definition of the HTTP</span></td><td class="lineno" valign="top"></td></tr>
579	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authentication Framework, previously defined in RFC 2617. We thank</span></td><td class="lineno" valign="top"></td></tr>
580	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> to John Franks, Phillip M. Hallam-Baker, Jeffery L. Hostetler, Scott</span></td><td class="lineno" valign="top"></td></tr>
581	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> D. Lawrence, Paul J. Leach, Ari Luotonen, and Lawrence C. Stewart for</span></td><td class="lineno" valign="top"></td></tr>
582	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> their work on that specification.</span></td><td class="lineno" valign="top"></td></tr>
583	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
584	<tr><td><a name="diff0041" /></td></tr>
585	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">7. References</span></td><td> </td><td class="rblock"><span class="insert"> [[acks: HTTPbis acknowledgements.]]</span></td><td class="lineno" valign="top"></td></tr>
586	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
587	<tr><td><a name="diff0042" /></td></tr>
588	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">7.1.</span> Normative References</td><td> </td><td class="rblock"><span class="insert">8. References</span></td><td class="lineno" valign="top"></td></tr>
589	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
590	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert">8.1.</span> Normative References</td><td class="lineno" valign="top"></td></tr>
591	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
592	<tr><td class="lineno" valign="top"></td><td class="left"> [Part1] Fielding, R., Ed., Gettys, J., Mogul, J., Frystyk, H.,</td><td> </td><td class="right"> [Part1] Fielding, R., Ed., Gettys, J., Mogul, J., Frystyk, H.,</td><td class="lineno" valign="top"></td></tr>
593	<tr><td class="lineno" valign="top"></td><td class="left"> Masinter, L., Leach, P., Berners-Lee, T., Lafon, Y., Ed.,</td><td> </td><td class="right"> Masinter, L., Leach, P., Berners-Lee, T., Lafon, Y., Ed.,</td><td class="lineno" valign="top"></td></tr>
594	<tr><td class="lineno" valign="top"></td><td class="left"> and J. Reschke, Ed., "HTTP/1.1, part 1: URIs, Connections,</td><td> </td><td class="right"> and J. Reschke, Ed., "HTTP/1.1, part 1: URIs, Connections,</td><td class="lineno" valign="top"></td></tr>
595	<tr><td><a name="diff0043" /></td></tr>
596	<tr><td class="lineno" valign="top"></td><td class="lblock"> and Message Parsing", <span class="delete">draft-ietf-httpbis-p1-messaging-11</span></td><td> </td><td class="rblock"> and Message Parsing", <span class="insert">draft-ietf-httpbis-p1-messaging-12</span></td><td class="lineno" valign="top"></td></tr>
597	<tr><td class="lineno" valign="top"></td><td class="lblock"> (work in progress), <span class="delete">August</span> 2010.</td><td> </td><td class="rblock"> (work in progress), <span class="insert">October</span> 2010.</td><td class="lineno" valign="top"></td></tr>
598	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
599	<tr><td class="lineno" valign="top"></td><td class="left"> [Part6] Fielding, R., Ed., Gettys, J., Mogul, J., Frystyk, H.,</td><td> </td><td class="right"> [Part6] Fielding, R., Ed., Gettys, J., Mogul, J., Frystyk, H.,</td><td class="lineno" valign="top"></td></tr>
600	<tr><td class="lineno" valign="top"></td><td class="left"> Masinter, L., Leach, P., Berners-Lee, T., Lafon, Y., Ed.,</td><td> </td><td class="right"> Masinter, L., Leach, P., Berners-Lee, T., Lafon, Y., Ed.,</td><td class="lineno" valign="top"></td></tr>
601	<tr><td class="lineno" valign="top"></td><td class="left"> Nottingham, M., Ed., and J. Reschke, Ed., "HTTP/1.1, part</td><td> </td><td class="right"> Nottingham, M., Ed., and J. Reschke, Ed., "HTTP/1.1, part</td><td class="lineno" valign="top"></td></tr>
602	<tr><td><a name="diff0044" /></td></tr>
603	<tr><td class="lineno" valign="top"></td><td class="lblock"> 6: Caching", <span class="delete">draft-ietf-httpbis-p6-cache-11</span> (work in</td><td> </td><td class="rblock"> 6: Caching", <span class="insert">draft-ietf-httpbis-p6-cache-12</span> (work in</td><td class="lineno" valign="top"></td></tr>
604	<tr><td class="lineno" valign="top"></td><td class="lblock"> progress), <span class="delete">August</span> 2010.</td><td> </td><td class="rblock"> progress), <span class="insert">October</span> 2010.</td><td class="lineno" valign="top"></td></tr>
605	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
606	<tr><td class="lineno" valign="top"></td><td class="left"> [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate</td><td> </td><td class="right"> [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate</td><td class="lineno" valign="top"></td></tr>
607	<tr><td class="lineno" valign="top"></td><td class="left"> Requirement Levels", BCP 14, RFC 2119, March 1997.</td><td> </td><td class="right"> Requirement Levels", BCP 14, RFC 2119, March 1997.</td><td class="lineno" valign="top"></td></tr>
608	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
609	<tr><td><a name="diff0045" /></td></tr>
610	<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">[RFC2617] Franks, J., Hallam-Baker, P., Hostetler, J., Lawrence, S.,</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
611	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Leach, P., Luotonen, A., and L. Stewart, "HTTP</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
612	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Authentication: Basic and Digest Access Authentication",</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
613	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> RFC 2617, June 1999.</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
614	<tr><td class="lineno" valign="top"></td><td class="lblock"> </td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
615	<tr><td class="lineno" valign="top"></td><td class="left"> [RFC5234] Crocker, D., Ed. and P. Overell, "Augmented BNF for Syntax</td><td> </td><td class="right"> [RFC5234] Crocker, D., Ed. and P. Overell, "Augmented BNF for Syntax</td><td class="lineno" valign="top"></td></tr>
616	<tr><td class="lineno" valign="top"></td><td class="left"> Specifications: ABNF", STD 68, RFC 5234, January 2008.</td><td> </td><td class="right"> Specifications: ABNF", STD 68, RFC 5234, January 2008.</td><td class="lineno" valign="top"></td></tr>
617	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
618	<tr><td><a name="diff0046" /></td></tr>
619	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete">7</span>.2. Informative References</td><td> </td><td class="rblock"><span class="insert">8</span>.2. Informative References</td><td class="lineno" valign="top"></td></tr>
620	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
621	<tr><td class="lineno" valign="top"></td><td class="left"> [RFC2616] Fielding, R., Gettys, J., Mogul, J., Frystyk, H.,</td><td> </td><td class="right"> [RFC2616] Fielding, R., Gettys, J., Mogul, J., Frystyk, H.,</td><td class="lineno" valign="top"></td></tr>
622	<tr><td class="lineno" valign="top"></td><td class="left"> Masinter, L., Leach, P., and T. Berners-Lee, "Hypertext</td><td> </td><td class="right"> Masinter, L., Leach, P., and T. Berners-Lee, "Hypertext</td><td class="lineno" valign="top"></td></tr>
623	<tr><td class="lineno" valign="top"></td><td class="left"> Transfer Protocol -- HTTP/1.1", RFC 2616, June 1999.</td><td> </td><td class="right"> Transfer Protocol -- HTTP/1.1", RFC 2616, June 1999.</td><td class="lineno" valign="top"></td></tr>
624	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
625	<tr><td><a name="diff0047" /></td></tr>
626	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> <span class="insert">[RFC2617] Franks, J., Hallam-Baker, P., Hostetler, J., Lawrence, S.,</span></td><td class="lineno" valign="top"></td></tr>
627	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Leach, P., Luotonen, A., and L. Stewart, "HTTP</span></td><td class="lineno" valign="top"></td></tr>
628	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Authentication: Basic and Digest Access Authentication",</span></td><td class="lineno" valign="top"></td></tr>
629	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> RFC 2617, June 1999.</span></td><td class="lineno" valign="top"></td></tr>
630	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> </td><td class="lineno" valign="top"></td></tr>
631	<tr><td class="lineno" valign="top"></td><td class="left"> [RFC3864] Klyne, G., Nottingham, M., and J. Mogul, "Registration</td><td> </td><td class="right"> [RFC3864] Klyne, G., Nottingham, M., and J. Mogul, "Registration</td><td class="lineno" valign="top"></td></tr>
632	<tr><td class="lineno" valign="top"></td><td class="left"> Procedures for Message Header Fields", BCP 90, RFC 3864,</td><td> </td><td class="right"> Procedures for Message Header Fields", BCP 90, RFC 3864,</td><td class="lineno" valign="top"></td></tr>
633	<tr><td class="lineno" valign="top"></td><td class="left"> September 2004.</td><td> </td><td class="right"> September 2004.</td><td class="lineno" valign="top"></td></tr>
634	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
635	<tr><td><a name="diff0048" /></td></tr>
636	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> <span class="insert">[RFC5226] Narten, T. and H. Alvestrand, "Guidelines for Writing an</span></td><td class="lineno" valign="top"></td></tr>
637	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> IANA Considerations Section in RFCs", BCP 26, RFC 5226,</span></td><td class="lineno" valign="top"></td></tr>
638	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> May 2008.</span></td><td class="lineno" valign="top"></td></tr>
639	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> </td><td class="lineno" valign="top"></td></tr>
640	<tr><td class="lineno" valign="top"></td><td class="left">Appendix A. Collected ABNF</td><td> </td><td class="right">Appendix A. Collected ABNF</td><td class="lineno" valign="top"></td></tr>
641	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
642	<tr><td class="lineno" valign="top"></td><td class="left"> Authorization = "Authorization:" OWS Authorization-v</td><td> </td><td class="right"> Authorization = "Authorization:" OWS Authorization-v</td><td class="lineno" valign="top"></td></tr>
643	<tr><td class="lineno" valign="top"></td><td class="left"> Authorization-v = credentials</td><td> </td><td class="right"> Authorization-v = credentials</td><td class="lineno" valign="top"></td></tr>
644	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
645	<tr><td class="lineno" valign="top"></td><td class="left"> OWS = <OWS, defined in [Part1], Section 1.2.2></td><td> </td><td class="right"> OWS = <OWS, defined in [Part1], Section 1.2.2></td><td class="lineno" valign="top"></td></tr>
646	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
647	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authenticate = "Proxy-Authenticate:" OWS Proxy-Authenticate-v</td><td> </td><td class="right"> Proxy-Authenticate = "Proxy-Authenticate:" OWS Proxy-Authenticate-v</td><td class="lineno" valign="top"></td></tr>
648	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authenticate-v = ( "," OWS ) challenge ( OWS "," [ OWS</td><td> </td><td class="right"> Proxy-Authenticate-v = ( "," OWS ) challenge ( OWS "," [ OWS</td><td class="lineno" valign="top"></td></tr>
649	<tr><td class="lineno" valign="top"></td><td class="left"> challenge ] )</td><td> </td><td class="right"> challenge ] )</td><td class="lineno" valign="top"></td></tr>
650	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authorization = "Proxy-Authorization:" OWS</td><td> </td><td class="right"> Proxy-Authorization = "Proxy-Authorization:" OWS</td><td class="lineno" valign="top"></td></tr>
651	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authorization-v</td><td> </td><td class="right"> Proxy-Authorization-v</td><td class="lineno" valign="top"></td></tr>
652	<tr><td class="lineno" valign="top"></td><td class="left"> Proxy-Authorization-v = credentials</td><td> </td><td class="right"> Proxy-Authorization-v = credentials</td><td class="lineno" valign="top"></td></tr>
653	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
654	<tr><td class="lineno" valign="top"></td><td class="left"> WWW-Authenticate = "WWW-Authenticate:" OWS WWW-Authenticate-v</td><td> </td><td class="right"> WWW-Authenticate = "WWW-Authenticate:" OWS WWW-Authenticate-v</td><td class="lineno" valign="top"></td></tr>
655	<tr><td class="lineno" valign="top"></td><td class="left"> WWW-Authenticate-v = ( "," OWS ) challenge ( OWS "," [ OWS</td><td> </td><td class="right"> WWW-Authenticate-v = ( "," OWS ) challenge ( OWS "," [ OWS</td><td class="lineno" valign="top"></td></tr>
656	<tr><td class="lineno" valign="top"></td><td class="left"> challenge ] )</td><td> </td><td class="right"> challenge ] )</td><td class="lineno" valign="top"></td></tr>
657	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
658	<tr><td><a name="diff0049" /></td></tr>
659	<tr><td class="lineno" valign="top"></td><td class="lblock"> challenge = <span class="delete"><challenge,</span> defined in <span class="delete">[RFC2617],</span> Section <span class="delete">1.2></span></td><td> </td><td class="rblock"> <span class="insert">auth-param = token "=" ( token / quoted-string )</span></td><td class="lineno" valign="top"></td></tr>
660	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> credentials</span> = <span class="delete"><credentials,</span> defined in <span class="delete">[RFC2617],</span> Section <span class="delete">1.2></span></td><td> </td><td class="rblock"><span class="insert"> auth-scheme = token</span></td><td class="lineno" valign="top"></td></tr>
661	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> </td><td class="lineno" valign="top"></td></tr>
662	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> challenge = <span class="insert">auth-scheme 1SP ( "," OWS ) auth-param *( OWS "," [ OWS</span></td><td class="lineno" valign="top"></td></tr>
663	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> auth-param ] )</span></td><td class="lineno" valign="top"></td></tr>
664	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> credentials = auth-scheme ( token / quoted-string / [ ( "," /</span></td><td class="lineno" valign="top"></td></tr>
665	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> auth-param ) *( OWS "," [ OWS auth-param ] ) ] )</span></td><td class="lineno" valign="top"></td></tr>
666	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
667	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> quoted-string = <quoted-string,</span> defined in <span class="insert">[Part1],</span> Section <span class="insert">1.2.2></span></td><td class="lineno" valign="top"></td></tr>
668	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
669	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm = "realm=" realm-value</span></td><td class="lineno" valign="top"></td></tr>
670	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm-value = quoted-string</span></td><td class="lineno" valign="top"></td></tr>
671	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
672	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> token</span> = <span class="insert"><token,</span> defined in <span class="insert">[Part1],</span> Section <span class="insert">1.2.2></span></td><td class="lineno" valign="top"></td></tr>
673	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
674	<tr><td class="lineno" valign="top"></td><td class="left"> ABNF diagnostics:</td><td> </td><td class="right"> ABNF diagnostics:</td><td class="lineno" valign="top"></td></tr>
675	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
676	<tr><td class="lineno" valign="top"></td><td class="left"> ; Authorization defined but not used</td><td> </td><td class="right"> ; Authorization defined but not used</td><td class="lineno" valign="top"></td></tr>
677	<tr><td class="lineno" valign="top"></td><td class="left"> ; Proxy-Authenticate defined but not used</td><td> </td><td class="right"> ; Proxy-Authenticate defined but not used</td><td class="lineno" valign="top"></td></tr>
678	<tr><td class="lineno" valign="top"></td><td class="left"> ; Proxy-Authorization defined but not used</td><td> </td><td class="right"> ; Proxy-Authorization defined but not used</td><td class="lineno" valign="top"></td></tr>
679	<tr><td class="lineno" valign="top"></td><td class="left"> ; WWW-Authenticate defined but not used</td><td> </td><td class="right"> ; WWW-Authenticate defined but not used</td><td class="lineno" valign="top"></td></tr>
680	<tr><td><a name="diff0050" /></td></tr>
681	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> ; realm defined but not used</span></td><td class="lineno" valign="top"></td></tr>
682	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
683	<tr><td class="lineno" valign="top"></td><td class="left">Appendix B. Change Log (to be removed by RFC Editor before publication)</td><td> </td><td class="right">Appendix B. Change Log (to be removed by RFC Editor before publication)</td><td class="lineno" valign="top"></td></tr>
684	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
685	<tr><td><a name="diff0051" /></td></tr>
686	<tr><td class="lineno" valign="top"></td><td class="lblock">B.1. Since RFC2616</td><td> </td><td class="rblock">B.1. Since RFC<span class="insert"> </span>2616</td><td class="lineno" valign="top"></td></tr>
687	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
688	<tr><td class="lineno" valign="top"></td><td class="left"> Extracted relevant partitions from [RFC2616].</td><td> </td><td class="right"> Extracted relevant partitions from [RFC2616].</td><td class="lineno" valign="top"></td></tr>
689	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
690	<tr><td class="lineno" valign="top"></td><td class="left">B.2. Since draft-ietf-httpbis-p7-auth-00</td><td> </td><td class="right">B.2. Since draft-ietf-httpbis-p7-auth-00</td><td class="lineno" valign="top"></td></tr>
691	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
692	<tr><td class="lineno" valign="top"></td><td class="left"> Closed issues:</td><td> </td><td class="right"> Closed issues:</td><td class="lineno" valign="top"></td></tr>
693	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
694	<tr><td class="lineno" valign="top"></td><td class="left"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/35>: "Normative and</td><td> </td><td class="right"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/35>: "Normative and</td><td class="lineno" valign="top"></td></tr>
695	<tr><td class="lineno" valign="top"></td><td class="left"> Informative references"</td><td> </td><td class="right"> Informative references"</td><td class="lineno" valign="top"></td></tr>
696	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
697	<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
698	<tr bgcolor="gray" ><td></td><th><a name="part-l5" /><small>skipping to change at</small><em> page 11, line 31</em></th><th> </th><th><a name="part-r5" /><small>skipping to change at</small><em> page 14, line 31</em></th><td></td></tr>
699	<tr><td class="lineno" valign="top"></td><td class="left"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/36>):</td><td> </td><td class="right"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/36>):</td><td class="lineno" valign="top"></td></tr>
700	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
701	<tr><td class="lineno" valign="top"></td><td class="left"> o Explicitly import BNF rules for "challenge" and "credentials" from</td><td> </td><td class="right"> o Explicitly import BNF rules for "challenge" and "credentials" from</td><td class="lineno" valign="top"></td></tr>
702	<tr><td class="lineno" valign="top"></td><td class="left"> RFC2617.</td><td> </td><td class="right"> RFC2617.</td><td class="lineno" valign="top"></td></tr>
703	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
704	<tr><td class="lineno" valign="top"></td><td class="left"> o Add explicit references to BNF syntax and rules imported from</td><td> </td><td class="right"> o Add explicit references to BNF syntax and rules imported from</td><td class="lineno" valign="top"></td></tr>
705	<tr><td class="lineno" valign="top"></td><td class="left"> other parts of the specification.</td><td> </td><td class="right"> other parts of the specification.</td><td class="lineno" valign="top"></td></tr>
706	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
707	<tr><td class="lineno" valign="top"></td><td class="left">B.4. Since draft-ietf-httpbis-p7-auth-02</td><td> </td><td class="right">B.4. Since draft-ietf-httpbis-p7-auth-02</td><td class="lineno" valign="top"></td></tr>
708	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
709	<tr><td><a name="diff0052" /></td></tr>
710	<tr><td class="lineno" valign="top"></td><td class="lblock"> Ongoing work on IANA Message Header Registration</td><td> </td><td class="rblock"> Ongoing work on IANA Message Header <span class="insert">Field </span>Registration</td><td class="lineno" valign="top"></td></tr>
711	<tr><td class="lineno" valign="top"></td><td class="left"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/40>):</td><td> </td><td class="right"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/40>):</td><td class="lineno" valign="top"></td></tr>
712	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
713	<tr><td><a name="diff0053" /></td></tr>
714	<tr><td class="lineno" valign="top"></td><td class="lblock"> o Reference RFC 3984, and update header registrations for <span class="delete">headers</span></td><td> </td><td class="rblock"> o Reference RFC 3984, and update header <span class="insert">field</span> registrations for</td><td class="lineno" valign="top"></td></tr>
715	<tr><td class="lineno" valign="top"></td><td class="lblock"> defined in this document.</td><td> </td><td class="rblock"> <span class="insert">header fields</span> defined in this document.</td><td class="lineno" valign="top"></td></tr>
716	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
717	<tr><td class="lineno" valign="top"></td><td class="left">B.5. Since draft-ietf-httpbis-p7-auth-03</td><td> </td><td class="right">B.5. Since draft-ietf-httpbis-p7-auth-03</td><td class="lineno" valign="top"></td></tr>
718	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
719	<tr><td class="lineno" valign="top"></td><td class="left">B.6. Since draft-ietf-httpbis-p7-auth-04</td><td> </td><td class="right">B.6. Since draft-ietf-httpbis-p7-auth-04</td><td class="lineno" valign="top"></td></tr>
720	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
721	<tr><td class="lineno" valign="top"></td><td class="left"> Ongoing work on ABNF conversion</td><td> </td><td class="right"> Ongoing work on ABNF conversion</td><td class="lineno" valign="top"></td></tr>
722	<tr><td class="lineno" valign="top"></td><td class="left"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/36>):</td><td> </td><td class="right"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/36>):</td><td class="lineno" valign="top"></td></tr>
723	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
724	<tr><td class="lineno" valign="top"></td><td class="left"> o Use "/" instead of "\|" for alternatives.</td><td> </td><td class="right"> o Use "/" instead of "\|" for alternatives.</td><td class="lineno" valign="top"></td></tr>
725	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
726	<tr><td class="lineno" valign="top"></td><td class="left"> o Introduce new ABNF rules for "bad" whitespace ("BWS"), optional</td><td> </td><td class="right"> o Introduce new ABNF rules for "bad" whitespace ("BWS"), optional</td><td class="lineno" valign="top"></td></tr>
727	<tr><td class="lineno" valign="top"></td><td class="left"> whitespace ("OWS") and required whitespace ("RWS").</td><td> </td><td class="right"> whitespace ("OWS") and required whitespace ("RWS").</td><td class="lineno" valign="top"></td></tr>
728	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
729	<tr><td class="lineno" valign="top"></td><td class="left"> o Rewrite ABNFs to spell out whitespace rules, factor out header</td><td> </td><td class="right"> o Rewrite ABNFs to spell out whitespace rules, factor out header</td><td class="lineno" valign="top"></td></tr>
730	<tr><td><a name="diff0054" /></td></tr>
731	<tr><td class="lineno" valign="top"></td><td class="lblock"> value format definitions.</td><td> </td><td class="rblock"> <span class="insert">field </span>value format definitions.</td><td class="lineno" valign="top"></td></tr>
732	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
733	<tr><td class="lineno" valign="top"></td><td class="left">B.7. Since draft-ietf-httpbis-p7-auth-05</td><td> </td><td class="right">B.7. Since draft-ietf-httpbis-p7-auth-05</td><td class="lineno" valign="top"></td></tr>
734	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
735	<tr><td class="lineno" valign="top"></td><td class="left"> Final work on ABNF conversion</td><td> </td><td class="right"> Final work on ABNF conversion</td><td class="lineno" valign="top"></td></tr>
736	<tr><td class="lineno" valign="top"></td><td class="left"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/36>):</td><td> </td><td class="right"> (<http://tools.ietf.org/wg/httpbis/trac/ticket/36>):</td><td class="lineno" valign="top"></td></tr>
737	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
738	<tr><td class="lineno" valign="top"></td><td class="left"> o Add appendix containing collected and expanded ABNF, reorganize</td><td> </td><td class="right"> o Add appendix containing collected and expanded ABNF, reorganize</td><td class="lineno" valign="top"></td></tr>
739	<tr><td class="lineno" valign="top"></td><td class="left"> ABNF introduction.</td><td> </td><td class="right"> ABNF introduction.</td><td class="lineno" valign="top"></td></tr>
740	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
741	<tr><td class="lineno" valign="top"></td><td class="left">B.8. Since draft-ietf-httpbis-p7-auth-06</td><td> </td><td class="right">B.8. Since draft-ietf-httpbis-p7-auth-06</td><td class="lineno" valign="top"></td></tr>
742	<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
743	<tr bgcolor="gray" ><td></td><th><a name="part-l6" /><small>skipping to change at</small><em> page 12, line 39</em></th><th> </th><th><a name="part-r6" /><small>skipping to change at</small><em> page 15, line 39</em></th><td></td></tr>
744	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
745	<tr><td class="lineno" valign="top"></td><td class="left"> Partly resolved issues:</td><td> </td><td class="right"> Partly resolved issues:</td><td class="lineno" valign="top"></td></tr>
746	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
747	<tr><td class="lineno" valign="top"></td><td class="left"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/196>: "Term for the</td><td> </td><td class="right"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/196>: "Term for the</td><td class="lineno" valign="top"></td></tr>
748	<tr><td class="lineno" valign="top"></td><td class="left"> requested resource's URI"</td><td> </td><td class="right"> requested resource's URI"</td><td class="lineno" valign="top"></td></tr>
749	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
750	<tr><td class="lineno" valign="top"></td><td class="left">B.12. Since draft-ietf-httpbis-p7-auth-10</td><td> </td><td class="right">B.12. Since draft-ietf-httpbis-p7-auth-10</td><td class="lineno" valign="top"></td></tr>
751	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
752	<tr><td class="lineno" valign="top"></td><td class="left"> None yet.</td><td> </td><td class="right"> None yet.</td><td class="lineno" valign="top"></td></tr>
753	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
754	<tr><td><a name="diff0055" /></td></tr>
755	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert">B.13. Since draft-ietf-httpbis-p7-auth-11</span></td><td class="lineno" valign="top"></td></tr>
756	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
757	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Closed issues:</span></td><td class="lineno" valign="top"></td></tr>
758	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
759	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/130>: "introduction</span></td><td class="lineno" valign="top"></td></tr>
760	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> to part 7 is work-in-progress"</span></td><td class="lineno" valign="top"></td></tr>
761	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
762	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/195>: "auth-param</span></td><td class="lineno" valign="top"></td></tr>
763	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> syntax"</span></td><td class="lineno" valign="top"></td></tr>
764	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
765	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/237>: "absorbing the</span></td><td class="lineno" valign="top"></td></tr>
766	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> auth framework from 2617"</span></td><td class="lineno" valign="top"></td></tr>
767	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
768	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Partly resolved issues:</span></td><td class="lineno" valign="top"></td></tr>
769	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
770	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> o <http://tools.ietf.org/wg/httpbis/trac/ticket/141>: "should we</span></td><td class="lineno" valign="top"></td></tr>
771	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> have an auth scheme registry"</span></td><td class="lineno" valign="top"></td></tr>
772	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> </td><td class="lineno" valign="top"></td></tr>
773	<tr><td class="lineno" valign="top"></td><td class="left">Index</td><td> </td><td class="right">Index</td><td class="lineno" valign="top"></td></tr>
774	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
775	<tr><td class="lineno" valign="top"></td><td class="left"> 4</td><td> </td><td class="right"> 4</td><td class="lineno" valign="top"></td></tr>
776	<tr><td><a name="diff0056" /></td></tr>
777	<tr><td class="lineno" valign="top"></td><td class="lblock"> 401 Unauthorized (status code) <span class="delete">5</span></td><td> </td><td class="rblock"> 401 Unauthorized (status code) <span class="insert">7</span></td><td class="lineno" valign="top"></td></tr>
778	<tr><td class="lineno" valign="top"></td><td class="lblock"> 407 Proxy Authentication Required (status code) <span class="delete">5</span></td><td> </td><td class="rblock"> 407 Proxy Authentication Required (status code) <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
779	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
780	<tr><td class="lineno" valign="top"></td><td class="left"> A</td><td> </td><td class="right"> A</td><td class="lineno" valign="top"></td></tr>
781	<tr><td><a name="diff0057" /></td></tr>
782	<tr><td class="lineno" valign="top"></td><td class="lblock"> Authorization header 6</td><td> </td><td class="rblock"> <span class="insert">auth-param 5</span></td><td class="lineno" valign="top"></td></tr>
783	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> auth-scheme 5</span></td><td class="lineno" valign="top"></td></tr>
784	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> Authorization header <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
785	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
786	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> C</span></td><td class="lineno" valign="top"></td></tr>
787	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> challenge 5</span></td><td class="lineno" valign="top"></td></tr>
788	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> credentials</span> 6</td><td class="lineno" valign="top"></td></tr>
789	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
790	<tr><td class="lineno" valign="top"></td><td class="left"> G</td><td> </td><td class="right"> G</td><td class="lineno" valign="top"></td></tr>
791	<tr><td class="lineno" valign="top"></td><td class="left"> Grammar</td><td> </td><td class="right"> Grammar</td><td class="lineno" valign="top"></td></tr>
792	<tr><td><a name="diff0058" /></td></tr>
793	<tr><td class="lineno" valign="top"></td><td class="lblock"> Authorization <span class="delete">6</span></td><td> </td><td class="rblock"> Authorization <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
794	<tr><td class="lineno" valign="top"></td><td class="lblock"> Authorization-v <span class="delete">6</span></td><td> </td><td class="rblock"> Authorization-v <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
795	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> challenge 5</span></td><td> </td><td class="rblock"> Proxy-Authenticate <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
796	<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> credentials 5</span></td><td> </td><td class="rblock"> Proxy-Authenticate-v <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
797	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authenticate <span class="delete">7</span></td><td> </td><td class="rblock"> Proxy-Authorization <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
798	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authenticate-v <span class="delete">7</span></td><td> </td><td class="rblock"> Proxy-Authorization-v <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
799	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authorization <span class="delete">7</span></td><td> </td><td class="rblock"> WWW-Authenticate <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
800	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authorization-v <span class="delete">7</span></td><td> </td><td class="rblock"> WWW-Authenticate-v <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
801	<tr><td class="lineno" valign="top"></td><td class="lblock"> WWW-Authenticate <span class="delete">7</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
802	<tr><td class="lineno" valign="top"></td><td class="lblock"> WWW-Authenticate-v <span class="delete">7</span></td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
803	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
804	<tr><td class="lineno" valign="top"></td><td class="left"> H</td><td> </td><td class="right"> H</td><td class="lineno" valign="top"></td></tr>
805	<tr><td class="lineno" valign="top"></td><td class="left"> Headers</td><td> </td><td class="right"> Headers</td><td class="lineno" valign="top"></td></tr>
806	<tr><td><a name="diff0059" /></td></tr>
807	<tr><td class="lineno" valign="top"></td><td class="lblock"> Authorization <span class="delete">6</span></td><td> </td><td class="rblock"> Authorization <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
808	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authenticate <span class="delete">6</span></td><td> </td><td class="rblock"> Proxy-Authenticate <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
809	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authorization <span class="delete">7</span></td><td> </td><td class="rblock"> Proxy-Authorization <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
810	<tr><td class="lineno" valign="top"></td><td class="lblock"> WWW-Authenticate <span class="delete">7</span></td><td> </td><td class="rblock"> WWW-Authenticate <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
811	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
812	<tr><td class="lineno" valign="top"></td><td class="left"> P</td><td> </td><td class="right"> P</td><td class="lineno" valign="top"></td></tr>
813	<tr><td><a name="diff0060" /></td></tr>
814	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authenticate header <span class="delete">6</span></td><td> </td><td class="rblock"> Proxy-Authenticate header <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
815	<tr><td class="lineno" valign="top"></td><td class="lblock"> Proxy-Authorization header <span class="delete">7</span></td><td> </td><td class="rblock"> Proxy-Authorization header <span class="insert">9</span></td><td class="lineno" valign="top"></td></tr>
816	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
817	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> R</span></td><td class="lineno" valign="top"></td></tr>
818	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm 5</span></td><td class="lineno" valign="top"></td></tr>
819	<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> realm-value 5</span></td><td class="lineno" valign="top"></td></tr>
820	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
821	<tr><td class="lineno" valign="top"></td><td class="left"> S</td><td> </td><td class="right"> S</td><td class="lineno" valign="top"></td></tr>
822	<tr><td class="lineno" valign="top"></td><td class="left"> Status Codes</td><td> </td><td class="right"> Status Codes</td><td class="lineno" valign="top"></td></tr>
823	<tr><td><a name="diff0061" /></td></tr>
824	<tr><td class="lineno" valign="top"></td><td class="lblock"> 401 Unauthorized <span class="delete">5</span></td><td> </td><td class="rblock"> 401 Unauthorized <span class="insert">7</span></td><td class="lineno" valign="top"></td></tr>
825	<tr><td class="lineno" valign="top"></td><td class="lblock"> 407 Proxy Authentication Required <span class="delete">5</span></td><td> </td><td class="rblock"> 407 Proxy Authentication Required <span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
826	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
827	<tr><td class="lineno" valign="top"></td><td class="left"> W</td><td> </td><td class="right"> W</td><td class="lineno" valign="top"></td></tr>
828	<tr><td><a name="diff0062" /></td></tr>
829	<tr><td class="lineno" valign="top"></td><td class="lblock"> WWW-Authenticate header <span class="delete">7</span></td><td> </td><td class="rblock"> WWW-Authenticate header <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
830	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
831	<tr><td class="lineno" valign="top"></td><td class="left">Authors' Addresses</td><td> </td><td class="right">Authors' Addresses</td><td class="lineno" valign="top"></td></tr>
832	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
833	<tr><td class="lineno" valign="top"></td><td class="left"> Roy T. Fielding (editor)</td><td> </td><td class="right"> Roy T. Fielding (editor)</td><td class="lineno" valign="top"></td></tr>
834	<tr><td class="lineno" valign="top"></td><td class="left"> Day Software</td><td> </td><td class="right"> Day Software</td><td class="lineno" valign="top"></td></tr>
835	<tr><td class="lineno" valign="top"></td><td class="left"> 23 Corporate Plaza DR, Suite 280</td><td> </td><td class="right"> 23 Corporate Plaza DR, Suite 280</td><td class="lineno" valign="top"></td></tr>
836	<tr><td class="lineno" valign="top"></td><td class="left"> Newport Beach, CA 92660</td><td> </td><td class="right"> Newport Beach, CA 92660</td><td class="lineno" valign="top"></td></tr>
837	<tr><td class="lineno" valign="top"></td><td class="left"> USA</td><td> </td><td class="right"> USA</td><td class="lineno" valign="top"></td></tr>
838	<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
839	<tr><td class="lineno" valign="top"></td><td class="left"> Phone: +1-949-706-5300</td><td> </td><td class="right"> Phone: +1-949-706-5300</td><td class="lineno" valign="top"></td></tr>
840
841	<tr><td></td><td class="left"></td><td> </td><td class="right"></td><td></td></tr>
842	<tr bgcolor="gray"><th colspan="5" align="center"><a name="end"> End of changes. 62 change blocks. </a></th></tr>
843	<tr class="stats"><td></td><th><i>150 lines changed or deleted</i></th><th><i> </i></th><th><i>308 lines changed or added</i></th><td></td></tr>
844	<tr><td colspan="5" align="center" class="small"><br/>This html diff was produced by rfcdiff 1.38. The latest version is available from <a href="http://www.tools.ietf.org/tools/rfcdiff/" >http://tools.ietf.org/tools/rfcdiff/</a> </td></tr>
845	</table>
846	</body>
847	</html>

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: draft-ietf-httpbis/diffs/draft-ietf-httpbis-p7-auth-12-from-11.diff.html @ 2110

Download in other formats: