Could the XML file be signed in such a way that a bitcoin client could check the authentisity?
I'm not the most technical person here. MD5 hash should be possible yeah guys?
That mime looks like it should work straightway. Reliant on a domain name though... feels like more points of failure with a browser involved. I really meant take it straight to Bitcoin. On the other hand, that would be useful straightaway. I think better, if using a browser address to take it to Bitcoin first, pass that address and then open a browser window from there.