W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > April to June 2008

Re: Thoughts on relation to WebDAV

From: Werner Baumann <werner.baumann@onlinehome.de>
Date: Sat, 24 May 2008 18:13:54 +0200
Message-ID: <48383EC2.2000902@onlinehome.de>
CC: w3c-dist-auth@w3.org


Petr Tomasek wrote:
> But every webdav client I've seen REQUIRES the DAV-header to operate on
> an URL as on a WebDAV collection. So it means You would practically disalow
> any partial (e.g. a read-only) WebDAV implementation, even if it works
> correctly and the full-fledged functionality is not needed at all!
>  

What the hell is a "read-only WebDAV implementation"? WebD*A*V is about 
*Authoring*. There is no read-only authoring. Enabling write-operations 
is at the very heart of WebDAV. If any server cannot support it, it 
should not claim to do WebDAV.

What you are talking about is an HTTP-Server with some extensions taken 
from WebDAV or maybe others. But what WebDAV-methods from RFC 4918 could 
a read-only server implement? PROPFIND, and nothing else.


Please do not mix up two things:

- servers that do not support certain required methods at all:
   they are simple not WebDAV-servers and should respond with
   status code 501 to such requests.

- refusing requests on certain resources or under certain
   circumstances:
   this is allowed and treated with in the spec. Usually 4xx status
   codes are appropriate. But this implies, that the same kind of
   request can be successful for another resource or under other
   circumstances.

BTW: 403 Forbidden is *not* related to authorization; that's 401.

Werner
Received on Saturday, 24 May 2008 16:14:48 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:44:16 GMT