Hi Thomas,
Il 29/03/2022 14:05, Thomas Corte (TANGO support) ha scritto:
Hello,
On 3/25/22 15:58, Mario Loffredo wrote:
Hi folks,
here are in the following some comments grouped by subject to last
meeting's feedback about EPP-over-HTTP:
...
*2) Cookies*
Jim (Reed) asked why cookies should be used in this case.
...
Which method other than session cookie shoud be used instead ?
In terms of EPP-over-HTTP implementations in the wild, RED.ES's
abysmal implementation for .es comes to mind, which uses a proprietary
EPP extension for the submission of the EPP client's credentials along
with each and every command. But such a move away from a stateful EPP
session is surely not desirable, leaving cookies (or some other way to
maintain state over multiple HTTP requests) as the only sensible choice.
That's exactly my main concern about such an idea that was the same
supporting last proposal about EPP-over-HTTP submitted to this WG.
Making EPP completely stateful appeared,and still apeears, to me
inefficient and in contrast with the trend in the design of REST services.
Best,
Mario
Best regards,
Thomas Corte
--
Dr. Mario Loffredo
Technological Unit “Digital Innovation”
Institute of Informatics and Telematics (IIT)
National Research Council (CNR)
via G. Moruzzi 1, I-56124 PISA, Italy
Phone: +39.0503153497
Web: http://www.iit.cnr.it/mario.loffredo
_______________________________________________
regext mailing list
regext@ietf.org
https://www.ietf.org/mailman/listinfo/regext
