[MPlayer-dev-eng] HTTP basic authentication support
Bertrand Baudet
bertrand_baudet at yahoo.com
Mon Jun 24 20:29:06 CEST 2002
On Monday 24 June 2002 06:14 am, Kim Minh Kaplan wrote:
> Bertrand Baudet writes:
> > On Sunday 23 June 2002 04:21 pm, Felix Buenemann wrote:
> >> A nice idea would be a -user xxx -pass yyy switch, so a global
> >> user/pass for all following urls can be specified.
>
> According to RFC 2617:
>
> « The realm value (case-sensitive), in combination with the
> canonical root URL (the absoluteURI for the server whose abs_path
> is empty; see section 5.1.2 of [2]) of the server being accessed,
> defines the protection space. »
>
> « The protection space determines the domain over which credentials
> can be automatically applied. If a prior request has been
> authorized, the same credentials MAY be reused for all other
> requests within that protection space [...]. Unless otherwise
> defined by the authentication scheme, a single protection space
> cannot extend outside the scope of its server. »
>
> So for this kind of cases it could be sufficient to reuse the same
> user/pass pair as in previous URLs. Of course it would be better to
> also remember the host/realm pair that corresponds to a user/password
> pair.
Yes, it's what I describe in a previous post when I was talking about caching
the realm(host+prot_space) user/pass.
Bertrand
More information about the MPlayer-dev-eng
mailing list