msporny
commented
2 months ago That sentence was added because a previous reviewer wanted to know what happens when authentication is established.
Open selfissued opened 2 months ago
msporny
commented
2 months ago That sentence was added because a previous reviewer wanted to know what happens when authentication is established.
selfissued
commented
2 months ago And this sentence doesn't answer the question of what happens when authentication is established, nor should it. The spec will be better off without this.
selfissued
commented
2 months ago How about replacing the whole sentence with "The processing performed following authentication is application-specific."?
msporny
commented
1 month ago In order to make progress at W3C TPAC, I am suggesting that this issue is "editorial" and can be resolved during the Candidate Recommendation phase. The VCWG will discuss this issue at W3C TPAC to see if the "during CR" determination is correct.
https://www.w3.org/TR/2024/WD-controller-document-20240817/#authentication This sentence doesn't provide actionable information: "If authentication is established, it is up to the application to decide what to do with that information." It should either be deleted or updated to do so.