Changeset 1378 for draft-ietf-httpbis

Timestamp:

Aug 5, 2011, 8:53:39 AM (8 years ago)

Author:

julian.reschke@…

Message:

fix 'credentials' ABNF to require whitespace between scheme name and other information (see #309)

Location:

draft-ietf-httpbis/latest

Files:

• httpbis.abnf (modified) (1 diff)
• p7-auth.html (modified) (7 diffs)
• p7-auth.xml (modified) (2 diffs)

draft-ietf-httpbis/latest/httpbis.abnf

@@ -101 +101 @@
 content-coding = token
 content-range-spec = byte-content-range-spec / other-content-range-spec
-credentials = auth-scheme ( token / quoted-string / [ ( "," / auth-param ) *( OWS "," [ OWS auth-param ] ) ] )
+credentials = auth-scheme 1*SP ( token / quoted-string / [ ( "," / auth-param ) *( OWS "," [ OWS auth-param ] ) ] )
 ctext = OWS / %x21-27 ; '!'-'''
  / %x2A-5B ; '*'-'['

draft-ietf-httpbis/latest/p7-auth.html

@@ -359 +359 @@
   } 
   @bottom-center {
-       content: "Expires February 4, 2012"; 
+       content: "Expires February 6, 2012"; 
   } 
   @bottom-right {
@@ -404 +404 @@
       <meta name="dct.creator" content="Reschke, J. F.">
       <meta name="dct.identifier" content="urn:ietf:id:draft-ietf-httpbis-p7-auth-latest">
-      <meta name="dct.issued" scheme="ISO8601" content="2011-08-03">
+      <meta name="dct.issued" scheme="ISO8601" content="2011-08-05">
       <meta name="dct.replaces" content="urn:ietf:rfc:2616">
       <meta name="dct.abstract" content="The Hypertext Transfer Protocol (HTTP) is an application-level protocol for distributed, collaborative, hypermedia information systems. HTTP has been in use by the World Wide Web global information initiative since 1990. This document is Part 7 of the seven-part specification that defines the protocol referred to as &#34;HTTP/1.1&#34; and, taken together, obsoletes RFC 2616. Part 7 defines the HTTP Authentication framework.">
@@ -435 +435 @@
             </tr>
             <tr>
-               <td class="left">Expires: February 4, 2012</td>
+               <td class="left">Expires: February 6, 2012</td>
                <td class="right">HP</td>
             </tr>
@@ -488 +488 @@
             <tr>
                <td class="left"></td>
-               <td class="right">August 3, 2011</td>
+               <td class="right">August 5, 2011</td>
             </tr>
          </tbody>
@@ -516 +516 @@
          in progress”.
       </p>
-      <p>This Internet-Draft will expire on February 4, 2012.</p>
+      <p>This Internet-Draft will expire on February 6, 2012.</p>
       <h1><a id="rfc.copyrightnotice" href="#rfc.copyrightnotice">Copyright Notice</a></h1>
       <p>Copyright © 2011 IETF Trust and the persons identified as the document authors. All rights reserved.</p>
@@ -668 +668 @@
          upon that challenge.
       </p>
-      <div id="rfc.figure.u.4"></div><pre class="inline"><span id="rfc.iref.c.2"></span>  <a href="#challenge.and.response" class="smpl">credentials</a> = <a href="#challenge.and.response" class="smpl">auth-scheme</a> ( <a href="#core.rules" class="smpl">token</a>
-                            / <a href="#core.rules" class="smpl">quoted-string</a>
-                            / #<a href="#challenge.and.response" class="smpl">auth-param</a> )
+      <div id="rfc.figure.u.4"></div><pre class="inline"><span id="rfc.iref.c.2"></span>  <a href="#challenge.and.response" class="smpl">credentials</a> = <a href="#challenge.and.response" class="smpl">auth-scheme</a> 1*<a href="#notation" class="smpl">SP</a> ( <a href="#core.rules" class="smpl">token</a>
+                                 / <a href="#core.rules" class="smpl">quoted-string</a>
+                                 / #<a href="#challenge.and.response" class="smpl">auth-param</a> )
 </pre><p id="rfc.section.2.1.p.12">If the origin server does not wish to accept the credentials sent with a request, it <em class="bcp14">SHOULD</em> return a 401 (Unauthorized) response. The response <em class="bcp14">MUST</em> include a WWW-Authenticate header field containing at least one (possibly new) challenge applicable to the requested resource.
       </p>
@@ -1130 +1130 @@
          </li>
          <li> &lt;<a href="http://tools.ietf.org/wg/httpbis/trac/ticket/257">http://tools.ietf.org/wg/httpbis/trac/ticket/257</a>&gt;: "Considerations for new authentications schemes"
+         </li>
+         <li> &lt;<a href="http://tools.ietf.org/wg/httpbis/trac/ticket/309">http://tools.ietf.org/wg/httpbis/trac/ticket/309</a>&gt;: "credentials ABNF missing SP (still using implied LWS?)"
          </li>
       </ul>

draft-ietf-httpbis/latest/p7-auth.xml

@@ -359 +359 @@
 </t>
 <figure><artwork type="abnf2616"><iref item="credentials" primary="true"/>
-  <x:ref>credentials</x:ref> = <x:ref>auth-scheme</x:ref> ( <x:ref>token</x:ref>
-                            / <x:ref>quoted-string</x:ref>
-                            / #<x:ref>auth-param</x:ref> )
+  <x:ref>credentials</x:ref> = <x:ref>auth-scheme</x:ref> 1*<x:ref>SP</x:ref> ( <x:ref>token</x:ref>
+                                 / <x:ref>quoted-string</x:ref>
+                                 / #<x:ref>auth-param</x:ref> )
 </artwork></figure>
 <t>
@@ -1296 +1296 @@
       "Considerations for new authentications schemes"
     </t>
+    <t>
+      <eref target="http://tools.ietf.org/wg/httpbis/trac/ticket/309"/>:
+      "credentials ABNF missing SP (still using implied LWS?)"
+    </t>
   </list>
 </t>