W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > April to June 2004


From: Julian Reschke <julian.reschke@gmx.de>
Date: Sun, 06 Jun 2004 21:28:21 +0200
Message-ID: <40C37055.3080905@gmx.de>
To: w3c-dist-auth@w3.org

"What should UNLOCK return if a bad token is provided or no token. (This 
might be contingent on UNLOCK_NEEDS_IF_HEADER.)"

I just tested this, here are the results (test script attached):

(a) Microsoft IIS 5.0: (a1) no lock token: 400, (a2) bad lock token: 412.

(b) Apache/Moddav 2.0.49: (b1) no lock token: 400, (b2): bad lock token: 

(c) SAP Enterprise Portal 5SP6: (c1) no lock token: 412, (c2): bad lock 
token: 412.

(d) Xythos (Sharemation): see (c). (I also note that Xythos is returning 
invalid lock tokens)


- we can't guarantee a specific status code,

- we should define a specific precondition (see proposal at 

- we should talk about what is the right thing to do here -- basically 
we need to answer whether "lock-token" is a request header that 
contributes to precondition checking as defined by RFC2616 
(<http://greenbytes.de/tech/webdav/rfc2616.html#status.412>) -- if we 
can agree on this, Apache/moddav's behaviour would be correct.

Feedback appreciated,


<green/>bytes GmbH -- http://www.greenbytes.de -- tel:+492512807760

Received on Sunday, 6 June 2004 15:29:06 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 20:01:31 UTC