Re: [Ietf-caldav] [Fwd: draft-reschke-http-addmember-00]

Scott Lawrence wrote:
> That statement misses the point - it may be true that it's difficult to
> express the access control based just on the method, but that doesn't
> mean that it's difficult to implement appropriate access control in
> either the client or the server.  The method alone does not specify the
> operation - indeed, in the case of POST the full specification of the
> operation is deliberately expanded to include the body mime type and the
> body content.
> I don't think you've shown how what you're trying to do is any different
> from what POST has always done.

It's a aubset with well-defined semantics. I consider this a feature.

Best regards, Julian

<green/>bytes GmbH -- -- tel:+492512807760

Received on Thursday, 17 February 2005 18:39:46 UTC