Hello, Git providers are inventing proprietary extensions to HTTP authentication for Git. It seems smarter to use SASL for this purpose, possibly allowing the client a choice and authentication ringback to the client's own domain. I wrote an Internet Draft to allow just that, and we implemented it for Apache, Nginx and FireFox. I would love to learn if this list considers it a sensible extensions to Git. https://datatracker.ietf.org/doc/html/draft-vanrein-httpauth-sasl If you think this is useful, it would be wonderful to mention that on the HTTP WorkGroup list as well, because they are now considering HTTP-SASL for adoption, a formal requisite to send "Authorization: SASL" headers. https://datatracker.ietf.org/wg/httpbis/about/ Thanks! Rick van Rein InternetWide.org Apache :- https://gitlab.com/arpa2/apachemod/-/tree/master/arpa2_sasl https://gitlab.com/arpa2/apachemod/-/tree/master/arpa2_diasasl Nginx :- https://github.com/stef/ngx_http_auth_sasl_module FireFox :- https://gitlab.com/arpa2/http_sasl_client
