diff --git a/xep-0206.xml b/xep-0206.xml index 98a6571c..e1a681f0 100644 --- a/xep-0206.xml +++ b/xep-0206.xml @@ -27,10 +27,11 @@ &ianpaterson; &stpeter; &lance; + &winfried; - 1.4rc1 - 2013-11-08 - ls + 1.4rc2 + 2014-02-10 + ls/wt

Incorporated patches from community review.

 @@ -156,7 +157,7 @@ Content-Length: 483 -

A success case for authentication and resource binding using the XMPP protocols is shown below. For detailed specification of these protocols (including error cases), refer to &rfc6120;

+

A success case for authentication and resource binding using the XMPP protocols is shown below. For detailed specification of these protocols (including error cases), refer to &rfc6120;. The server MAY offer the SASL-EXTERNAL method, for example when BOSH is used in conjunction with HTTP authentication or TLS authentication on the HTTP level.

The BOSH <body/> element SHOULD include the 'xml:lang' attribute.
  • The BOSH <body/> element SHOULD be empty (i.e., not contain an XML stanza). However, if the client includes an XML stanza in the body, the connection manager SHOULD ignore it. It is known that some connection manager implementations accept an XML stanza in the body of the restart request and send that stanza to the server when the stream is restarted; however there is no guarantee that a connection manager will send the stanza so a client cannot rely on this behavior.
    • +

    When SASL-EXTERNAL is used in combination with BOSH the BOSH <body/> element SHOULD include the 'from' attribute upon stream restart. This because constrained clients can not always know what credentials were used to authenticate on the HTTP level. The server MUST try to associate the provided 'from' with the credentials that were provided on the other level.

    The following example illustrates the format for a restart request.