W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > January to March 2007

Re: MS Webfolder WebDAV Client: Authentication issue with handling of replies to PUT requests

From: Julian Reschke <julian.reschke@gmx.de>
Date: Tue, 30 Jan 2007 14:29:46 +0100
Message-ID: <45BF484A.6030103@gmx.de>
To: Andy Staudacher <andress@ee.ethz.ch>
CC: w3c-dist-auth@w3.org

Andy Staudacher schrieb:
> Thanks for the hint. I guess your idea is that this specific client might
> not expect the server to send the response before reading the complete
> request.
> 
> Since our WebDAV server is a PHP script running on a webserver, we don't
> have control over that though.
> The PHP engine always reads the complete HTTP request before the script is
> given control. If files are part of a HTTP request (POST, PUT), PHP stores
> the file(s) on disk as temporary file(s), gives the script control to copy
> them and once the script terminates, it deletes the temporary file(s) again.
> 
> So you might be onto something, but it would be exactly the other way
> around. Maybe MS Webfolders expects a 401 response before the body is
> transmitted. But that would be very, very weird to say the least.

If the client sends the request with

	Expect: 100-continue

(see <http://greenbytes.de/tech/webdav/rfc2616.html#rfc.section.8.2.3>), 
that would indeed the correct behavior. The problem is that this is very 
hard to implement in the generic case...

> (For the record, just to try all alternatives I moved the PHP's php://input
> stream reading before the auth check to see if that helps. It didn't.)
> 
> Thanks for all your input,
>  - Andy

Best regards, Julian
Received on Tuesday, 30 January 2007 13:36:39 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:44:15 GMT