[MPlayer-dev-eng] HTTP basic authentication support

Bertrand Baudet bertrand_baudet at yahoo.com
Mon Jun 24 20:29:06 CEST 2002


On Monday 24 June 2002 06:14 am, Kim Minh Kaplan wrote:
> Bertrand Baudet writes:
> > On Sunday 23 June 2002 04:21 pm, Felix Buenemann wrote:
> >> A nice idea would be a -user xxx -pass yyy switch, so a global
> >> user/pass for all following urls can be specified.
>
> According to RFC 2617:
>
>   « The realm value (case-sensitive), in combination with the
>     canonical root URL (the absoluteURI for the server whose abs_path
>     is empty; see section 5.1.2 of [2]) of the server being accessed,
>     defines the protection space. »
>
>   « The protection space determines the domain over which credentials
>     can be automatically applied. If a prior request has been
>     authorized, the same credentials MAY be reused for all other
>     requests within that protection space [...]. Unless otherwise
>     defined by the authentication scheme, a single protection space
>     cannot extend outside the scope of its server. »
>
> So for this kind of cases it could be sufficient to reuse the same
> user/pass pair as in previous URLs.  Of course it would be better to
> also remember the host/realm pair that corresponds to a user/password
> pair.

Yes, it's what I describe in a previous post when I was talking about caching
the realm(host+prot_space) user/pass.

Bertrand





More information about the MPlayer-dev-eng mailing list