- From: <gclemm@rational.com>
- Date: Sun, 27 Jan 2002 09:38:49 -0500
- To: w3c-dist-auth@w3c.org
Yes. A server must be able to check if the current user "matches" a given principal URL, but this could be one of many principal URL's (from the same or different domains) that the current user matches, and there is no interoperable way for the client to ask the server "what principal am I", and then try to match that principal against the one stored with the lock. Cheers, Geoff -----Original Message----- From: Jason Crawford [mailto:ccjason@us.ibm.com] Sent: Saturday, January 26, 2002 11:00 AM To: Clemm, Geoff Cc: w3c-dist-auth@w3c.org Subject: RE: HOW_TO_IDENTIFY_LOCK_OWNER << The ACL spec does not associate a principal URL with an authenticated user, and therefore a principal URL is not in general available. >> Geoff, could you explain what this sentence means? Are you saying a server can't necessarily map an authenticated user to a principal URL. But it can (and actually must be able to) check if a *given* principal URL includes a given authenticated user? Please elaborate. J. ------------------------------------------ Phone: 914-784-7569, ccjason@us.ibm.com
Received on Sunday, 27 January 2002 09:39:53 UTC