Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Does DACS require that HTTP cookies be used?

cookies DACs http require Used
0
Posted

Does DACS require that HTTP cookies be used?

0 CommentsAdd a Comment

1 Answer

0

No. The requirement for a common domain name suffix for jurisdictions is due to the rules that standard browsers use to decide whether to send an HTTP cookie. Since DACS is often deployed in environments where these off-the-shelf browsers are used, HTTP cookies are the mechanism of choice to convey DACS identities. Using cookies to store authentication state (credentials) is primarily a convenience and efficiency measure, so they are important even in a single jurisdiction federation. The use of HTTP cookies and common domain name suffixes is not integral to the system architecture, however. In environments less general or with different requirements than what DACS was designed for, alternatives to HTTP cookies may be desirable or even necessary. For this reason, other methods of conveying DACS identities are supported, such as through the HTTP Authorization header (RFC 2617) or the HTTP extension-header mechanism (RFC 2616). In fact, DACS can be customized or extended to accept any se

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123