RFC 3744:Web Distributed Authoring and Versioning ...
RFC-Ref

A - B - C - D - E - F - G - H - I - L - M - N - O - P - Q - R - S - T - U - V - W - X

method

Click on the red underlined text to get to the source

1. Introduction
... (such as an HTTP or WebDAV method) to a resource for execution, the server evaluates the ACEs in the ACL ...
... user name, job title, etc. Two separate searches are supported, both via the REPORT method, one to search principal resources ...
... HTTP and WebDAV methods are described in the remainder of Section 7. The access control setting method, ACL ...
... methods are described in the remainder of Section 7. The access control setting method, ACL, is specified in Section 8. Four reports that provide limited server-side ...
... A "protected property" is one whose value cannot be updated except by a method explicitly defined as updating that specific property. In particular, a protected property cannot be updated with a ...


3. Privileges
... Ability to perform a given method on a resource MUST be controlled by one or more privileges. Authors of protocol extensions ...
... protocol extensions that define new HTTP methods SHOULD specify which privileges (by defining new privileges ...
... privileges, or mapping to ones below) are required to perform the method. A principal with no privileges to a resource MUST be denied ...
... The read privilege controls methods that return information about the state of the resource, including the resource's properties. Affected ...
... state of the resource, including the resource's properties. Affected methods include GET and PROPFIND. Any implementation-defined ...
... PROPFIND. Additionally, the read privilege MUST control the OPTIONS method. <!ELEMENT ...
... The write privilege controls methods that lock a resource or modify the content, dead properties, or (in the case of a collection) membership of the resource, such as PUT and PROPPATCH ...
... implementation-defined privilege that also controls access to methods modifying content, dead properties or collection membership must be aggregated under DAV ...
... The DAV:write-properties privilege controls methods that modify the dead properties of the resource, such as PROPPATCH. Whether this ...
... implementation-defined privilege that also controls access to methods modifying dead properties must be aggregated under DAV:write-properties - e.g., if ...
... The DAV:write-content privilege controls methods that modify the content of an existing resource, such as PUT. Any implementation- defined privilege ...
... The DAV:unlock privilege controls the use of the UNLOCK method by a principal other than the lock owner (the principal ...
... DAV:write-acl privilege controls use of the ACL method to modify the DAV:acl property of the resource. ...
... The DAV:bind privilege allows a method to add a new member URL to the specified collection (for example via PUT or MKCOL). It is ignored ...
... The DAV:unbind privilege allows a method to remove a member URL from ...


5. Access Control Properties
... Access control properties may be retrieved just like other WebDAV properties, using the PROPFIND method. Since it is expensive, for many servers, to retrieve access control information, ...
... ACE of each resource that inherits that ACE. The method by which ACLs are initialized or by which ACEs are inherited ...
... tries to set an ACL via the ACL method, the server may reject the attempt to set the ACL as specified. The following properties ...
... The following example shows how access control information can be retrieved by using the PROPFIND method to fetch the values of the DAV:owner, DAV ...


7. Access Control and existing methods
... Access Control and existing methods ...
... This section defines the impact of access control functionality on existing methods. ...
... Any HTTP method ...
... WebDAV ACL mechanism requires the usage of HTTP method "preconditions" as described in section 1.6 of RFC3253prop for ALL HTTP ...
... 3253prop for ALL HTTP methods. All HTTP methods have an additional precondition called ...
... methods. All HTTP methods have an additional precondition called DAV:need-privileges ...
... DAV:need-privileges. If an HTTP method fails due to insufficient privileges, the response body to the "403 Forbidden" error MUST ...
... privilege ) > Since some methods require multiple permissions on multiple resources, this information is needed to resolve any ambiguity. There is no requirement ...
... access control and that /foo.html can have its access control list modified by the ACL method. ...


8. Access Control Methods
... Access Control Methods ...
... The ACL method modifies the access control list (which can be read via the DAV ...
... DAV:acl property) of a resource. Specifically, the ACL method only permits modification to ACEs that are not inherited, and are not protected. An ACL ...
... ACEs that are not inherited, and are not protected. An ACL method invocation modifies all non- inherited and non-protected ACEs in a resource's access control list ...
... access control list. To accomplish this, a client uses the PROPFIND method to retrieve the value of the DAV:acl property, then parses the returned access control list ...
... ACE set in the request body of the ACL method. ...
... Example: the ACL method ...
... Example: ACL method failure due to protected ACE conflict ...
... URL http://www.example.com/ users/esedlar is the owner of the resource. The ACL method invocation fails because the submitted ACE conflicts with the ...
... Example: ACL method failure due to an inherited ACE conflict ...
... Example: ACL method failure due to an attempt to set grant and ...


9. Access Control Reports
... REPORT Method ...
... The REPORT method (defined in Section 3.6 of [RFC3253]) provides an extensible mechanism for obtaining information about a resource. ...
... RFC3253]) provides an extensible mechanism for obtaining information about a resource. Unlike the PROPFIND method, which returns the value of one or more named properties, the REPORT method can involve more complex ...
... Unlike the PROPFIND method, which returns the value of one or more named properties, the REPORT method can involve more complex processing. REPORT is valuable in cases where the server has access to all of the information needed to perform the complex request (such ...
... The actual search method (exact matching vs. substring matching vs, prefix ...
... caseless searching. One of the benefits of leaving the search method to the discretion of the server implementation is the default LDAP attribute search ...


12. Security Considerations
... vulnerable state, such as being world-writable. In particular, the property retrieval method PROPFIND, executed with Depth infinity on an entire hierarchy, is a very efficient way to retrieve the DAV ...


17. Appendix A. WebDAV XML Document Type Definition Addendum
... <!-- Access Control and Existing Methods (Section 7) --> <!ELEMENT ...
... <!-- ACL method preconditions (Section 8.1.1) --> <!ELEMENT ...


18. Appendix B. WebDAV Method Privilege Table (Normative)
... Appendix B. WebDAV Method Privilege Table (Normative) ...
... The following table of WebDAV methods (as defined in RFC 2518prop, 2616, and 3253) clarifies which privileges ...
... and 3253) clarifies which privileges are required for access for each method. Note that the privileges listed, if denied, MUST cause access to be denied. However, given that a specific implementation ...
... MAY define an additional custom privilege to control access to existing methods, having all of the indicated privileges does not mean that access will be granted. Note that lack of the indicated ...
... +---------------------------------+---------------------------------+ | METHOD | PRIVILEGES | +---------------------------------+---------------------------------+ ...


19. Index
... A ACL method 40 C ...
... M Methods ACL 40 ...

A - B - C - D - E - F - G - H - I - L - M - N - O - P - Q - R - S - T - U - V - W - X

Google
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org