http - User info in URI without password -
i know uri supports next syntax:
http://[user]:[password]@[domain.tld] when there no password or if password empty, there colon?
in other words, should take this:
http://[user]:@[domain.tld] or this:
http://[user]@[domain.tld] or both valid?
the current uri standard (std 66) rfc 3986, , relevant section 3.2.1. user information.
there it’s defined userinfo subcomponent (which gets followed @) can contain combination of
:, percent-encoded characters, and characters sets unreserved , sub-delims. so means both of examples valid.
however, note format user:password deprecated. anyway, give recommendations how applications should handle such uris, i.e., after first : character should not displayed applications, unless
the info after colon empty string (indicating no password).
so according recommendation, userinfo subcomponent user: indicates there username "user" , no password.
http url
No comments:
Post a Comment