RFC 7230-7235

Standards & Rfcs Jan 6, 2025 HTTP

Definition

Every time you click a link, submit a form, or an app fetches data in the background, HTTP makes it happen. RFC 7230-7235 is the modern specification suite that defines exactly how HTTP/1.1 works - the protocol that powers most of the web. It replaced the older, monolithic RFC 2616 with six focused documents that are much easier to read, reference, and update independently.

Why split one document into six? The original HTTP spec from 1999 was a massive, 176-page document that covered everything from message syntax to caching to authentication. When the internet community needed to update just the caching rules, they had to navigate a document that also covered dozens of unrelated topics. The new approach creates separate “volumes” for different concerns: message format, semantics, caching, authentication, and so on.

Think of it like reorganizing a giant user manual into separate, focused guides. Instead of one 500-page book covering your car’s engine, electronics, safety features, and maintenance schedule, you get separate manuals for each topic. This makes it easier to find what you need and update specific sections without touching the others. For developers building web servers, clients, or APIs, this modular approach is a significant quality-of-life improvement.

Example

Loading any webpage: When you type a URL into your browser, RFC 7230 defines the exact format of the request your browser sends and the response the server returns. Every header, every status code, every piece of the message structure follows these rules.

Saving bandwidth with caching: When a website serves you a logo image, RFC 7234 defines how your browser knows it can reuse that cached image tomorrow instead of downloading it again. The Cache-Control headers, ETags, and conditional requests all come from this spec.

Logging into websites: When a website says “you must log in to see this,” the WWW-Authenticate header it sends is defined in RFC 7235. This allows browsers to show you login dialogs and handle authentication flows.

Downloading large files in chunks: When you download a large file and pause midway, then resume later, RFC 7233 defines how “range requests” work - letting you request just the bytes you are missing rather than starting over.

Analogy

The Encyclopedia Set: Imagine replacing a single massive encyclopedia with a set of specialized volumes: one for science, one for history, one for geography. Each volume is complete on its own topic but references the others when needed. RFC 7230-7235 does the same thing for HTTP - each document covers its specialty completely.

The Building Codes Library: Construction is governed by separate codes for structural integrity, electrical systems, plumbing, and fire safety. Each code is maintained by specialists in that field and can be updated independently. The HTTP spec suite works the same way - message syntax experts maintain 7230, caching experts maintain 7234, and so on.

The Restaurant Manual Set: A restaurant might have separate manuals for food safety, customer service, kitchen operations, and cleaning procedures. Staff consult the relevant manual for their task. Web developers consult the relevant RFC for their implementation challenge.

The Legal Code Organization: Laws are organized into volumes covering different topics - tax law, criminal law, property law. Each area has its own experts and update cycles. HTTP standards follow the same organizational principle.

Code Example


// RFC 7230: Message Syntax and Routing
GET /api/users HTTP/1.1
Host: api.example.com
Connection: keep-alive

// RFC 7231: Semantics and Content
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 42

// RFC 7232: Conditional Requests
GET /api/users/123 HTTP/1.1
If-None-Match: "abc123"
If-Modified-Since: Wed, 21 Oct 2015 07:28:00 GMT

// RFC 7233: Range Requests
GET /files/large.pdf HTTP/1.1
Range: bytes=0-1023

// RFC 7234: [Caching](https://reference.apios.info/terms/caching/)
HTTP/1.1 200 OK
Cache-Control: max-age=3600, public
ETag: "abc123"

// RFC 7235: Authentication
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Bearer realm="api"