Re: AW: DAV:principal-URL
Julian Reschke <julian.reschke@gmx.de> Wed, 21 May 2008 14:02 UTC
Return-Path: <w3c-dist-auth-request@listhub.w3.org>
X-Original-To: ietfarch-webdav-archive@core3.amsl.com
Delivered-To: ietfarch-webdav-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2547D3A6A8F for <ietfarch-webdav-archive@core3.amsl.com>; Wed, 21 May 2008 07:02:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.499
X-Spam-Level:
X-Spam-Status: No, score=-5.499 tagged_above=-999 required=5 tests=[AWL=0.200, BAYES_00=-2.599, J_CHICKENPOX_33=0.6, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 43OaRQ-kT9eC for <ietfarch-webdav-archive@core3.amsl.com>; Wed, 21 May 2008 07:02:08 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by core3.amsl.com (Postfix) with ESMTP id 555923A6A22 for <webdav-archive@lists.ietf.org>; Wed, 21 May 2008 07:01:48 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.63) (envelope-from <w3c-dist-auth-request@listhub.w3.org>) id 1JyorI-0001DA-QE for w3c-dist-auth-dist@listhub.w3.org; Wed, 21 May 2008 14:00:00 +0000
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.63) (envelope-from <julian.reschke@gmx.de>) id 1JyorH-0001CV-LC for w3c-dist-auth@listhub.w3.org; Wed, 21 May 2008 13:59:59 +0000
Received: from mail.gmx.net ([213.165.64.20]) by lisa.w3.org with smtp (Exim 4.63) (envelope-from <julian.reschke@gmx.de>) id 1Jyor7-0000jO-W7 for w3c-dist-auth@w3.org; Wed, 21 May 2008 13:59:59 +0000
Received: (qmail invoked by alias); 21 May 2008 13:59:16 -0000
Received: from mail.greenbytes.de (EHLO [192.168.1.107]) [217.91.35.233] by mail.gmx.net (mp004) with SMTP; 21 May 2008 15:59:16 +0200
X-Authenticated: #1915285
X-Provags-ID: V01U2FsdGVkX18mZRNnI4km3Xd1I7uNkcB2WsiJ5aQxlSv/15KF2U 5JuTk3bSXY+ufY
Message-ID: <48342AAD.5010404@gmx.de>
Date: Wed, 21 May 2008 15:59:09 +0200
From: Julian Reschke <julian.reschke@gmx.de>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.8.0.4) Gecko/20060516 Thunderbird/1.5.0.4 Mnenhy/0.7.4.666
MIME-Version: 1.0
To: Wilfredo Sánchez Vega <wsanchez@wsanchez.net>
CC: Cyrus Daboo <cyrus@daboo.name>, Geoffrey M Clemm <geoffrey.clemm@us.ibm.com>, acl@webdav.org, Konstantin Breu <Konstantin.Breu@gmx.net>, 'WebDAV' <w3c-dist-auth@w3.org>
References: <OF517DF972.93266283-ON85257449.006AD20D-85257449.006B35F2@us.ibm.com> <88045FA6253BCEB763E06402@caldav.corp.apple.com> <BF0095F6-C131-45F5-8FB5-C4984D6D0DDC@wsanchez.net>
In-Reply-To: <BF0095F6-C131-45F5-8FB5-C4984D6D0DDC@wsanchez.net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Y-GMX-Trusted: 0
Received-SPF: pass
X-SPF-Guess: pass
X-W3C-Hub-Spam-Status: No, score=-2.6
X-W3C-Hub-Spam-Report: BAYES_00=-2.599, SPF_PASS=-0.001
X-W3C-Scan-Sig: lisa.w3.org 1Jyor7-0000jO-W7 54c8f9e5928096286ff4e6ec3eff97a5
X-Original-To: w3c-dist-auth@w3.org
Subject: Re: AW: DAV:principal-URL
Archived-At: <http://www.w3.org/mid/48342AAD.5010404@gmx.de>
Resent-From: w3c-dist-auth@w3.org
X-Mailing-List: <w3c-dist-auth@w3.org> archive/latest/12851
X-Loop: w3c-dist-auth@w3.org
Sender: w3c-dist-auth-request@w3.org
Resent-Sender: w3c-dist-auth-request@w3.org
Precedence: list
List-Id: <w3c-dist-auth.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Unsubscribe: <mailto:w3c-dist-auth-request@w3.org?subject=unsubscribe>
Resent-Message-Id: <E1JyorI-0001DA-QE@frink.w3.org>
Resent-Date: Wed, 21 May 2008 14:00:00 +0000
Wilfredo Sánchez Vega wrote: > > The reason I brought this up was that is affects > draft-sanchez-webdav-current-principal-00 which I submitted. > > I had hoped to require that the principal URL returned in the > current-user-principal-resource property MUST be the same as the > principal-url property on the resource at that URL. That would avoid > requiring a client from having to fetch the > current-user-principal-resource property on a DAV resource, then fetch > the principal-url from there in order to know what to use in ACEs. > That's only feasible if the principal-url property must also be an > http(s) URL. Let's assume that the principal URL can be something like a mailto: URL. As far as I understand, RFC 3744 requires to use the principal URL in the ACL request, and it would be very strange if it didn't come back in the DAV:acl property. So assuming we'd have a mailto URL in all these places, how can a client - in general - find the associated HTTP URL? The DAV:principal-property-search report *could* do that, as long as the server supports searching on the DAV:principal-URL property. Geoff said: GC> If we believe that it is reasonable to require that the DAV:principal-URL be an HTTP URL, then I'm fine with just requiring this in RFC3774bis. GC> If we don't require that, then I don't think we can require that there be a way to "find" that principal, since as you say, if you can find it using the information in the DAV:principal-URL, you should have been able to format that information as an HTTP URL. ...so I'm really tempted to state that, after all, the principal URL needs to be an HTTP URL. However, Section 2 states: "A URI of any scheme MAY be used to identify a principal resource. However, servers implementing this specification MUST expose principal resources at an http(s) URL, which is a privileged scheme that points to resources that have additional properties, as described in Section 4. So, a principal resource can have multiple URIs, one of which has to be an http(s) scheme URL. Although an implementation SHOULD support PROPFIND and MAY support PROPPATCH to access and modify information about a principal, it is not required to do so." So if a server chooses not to fulfill "SHOULD support PROPFIND", what would that buy us? Is anybody aware of a server that exposes principals as non-HTTP resources, or as HTTP resources not supporting PROPFIND? Going back to Wilfredo's mail...: > I had hoped to require that the principal URL returned in the > current-user-principal-resource property MUST be the same as the > principal-url property on the resource at that URL. That would avoid > requiring a client from having to fetch the > current-user-principal-resource property on a DAV resource, then fetch > the principal-url from there in order to know what to use in ACEs. > That's only feasible if the principal-url property must also be an > http(s) URL. Why wouldn't that work for servers that in fact do not have any WebDAV enabled principal resources? BR, Julian
- DAV:principal-URL Wilfredo Sánchez Vega
- Re: DAV:principal-URL Julian Reschke
- Re: DAV:principal-URL Geoffrey M Clemm
- AW: DAV:principal-URL Konstantin Breu
- Re: AW: DAV:principal-URL Geoffrey M Clemm
- Re: AW: DAV:principal-URL Wilfredo Sánchez Vega
- Re: AW: DAV:principal-URL Julian Reschke
- Re: AW: DAV:principal-URL Geoffrey M Clemm
- Re: AW: DAV:principal-URL Cyrus Daboo
- Re: AW: DAV:principal-URL Wilfredo Sánchez Vega
- Re: AW: DAV:principal-URL Julian Reschke
- Re: AW: DAV:principal-URL Wilfredo Sánchez Vega
- Re: AW: DAV:principal-URL Julian Reschke
- Re: AW: DAV:principal-URL Cyrus Daboo
- Re: AW: DAV:principal-URL Wilfredo Sánchez Vega
- Re: AW: DAV:principal-URL Julian Reschke
- Re: AW: DAV:principal-URL Cyrus Daboo
- Re: AW: DAV:principal-URL Julian Reschke
- Re: AW: DAV:principal-URL Cyrus Daboo
- Re: AW: DAV:principal-URL Wilfredo Sánchez Vega
- Re: AW: DAV:principal-URL Wilfredo Sánchez Vega