[Web-SIG] Communicating authenticated user information

Phillip J. Eby pje at telecommunity.com
Sun Jan 22 19:25:49 CET 2006

At 05:45 PM 1/22/2006 +0000, Alan Kennedy wrote:
>I agree about not sending this information back to the user: it's
>unnecessary and potentially dangerous.

Yep, it would be really dangerous to let me know who I just logged in to an 
application as.  I might find out who I really am! ;)

More information about the Web-SIG mailing list