Return-Path: Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: (qmail 24126 invoked from network); 1 Oct 2007 19:06:45 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 1 Oct 2007 19:06:45 -0000 Received: (qmail 31401 invoked by uid 500); 1 Oct 2007 19:06:28 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 31334 invoked by uid 500); 1 Oct 2007 19:06:27 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 31323 invoked by uid 99); 1 Oct 2007 19:06:27 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 01 Oct 2007 12:06:27 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: local policy) Received: from [208.97.132.83] (HELO spaceymail-a4.g.dreamhost.com) (208.97.132.83) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 01 Oct 2007 19:06:28 +0000 Received: from [192.168.0.105] (ip72-211-200-45.oc.oc.cox.net [72.211.200.45]) by spaceymail-a4.g.dreamhost.com (Postfix) with ESMTP id A5815161841 for ; Mon, 1 Oct 2007 12:05:32 -0700 (PDT) Mime-Version: 1.0 (Apple Message framework v752.2) In-Reply-To: <59C6A47D-3358-4538-9301-7D5416916C1B@jaguNET.com> References: <20071001000558.423652e7@grimnir> <20071001130335.GA10276@devsys.jaguNET.com> <470107AD.2040709@apache.org> <20071001161414.0752d2e3@grimnir> <59C6A47D-3358-4538-9301-7D5416916C1B@jaguNET.com> Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <903E332E-52E5-407F-BEBC-FDEC1DF8A641@gbiv.com> Content-Transfer-Encoding: 7bit From: "Roy T. Fielding" Subject: Re: Proxying OPTIONS * Date: Mon, 1 Oct 2007 12:05:41 -0700 To: dev@httpd.apache.org X-Mailer: Apple Mail (2.752.2) X-Virus-Checked: Checked by ClamAV on apache.org On Oct 1, 2007, at 11:02 AM, Jim Jagielski wrote: > TRACE also does not/should not trace to the filesystem. > So, I think what we should do is use the existing > architecture and have a quick_handler that checks for > the OPTIONS * case and, if so, return DONE. fine. > I am not sure, to be honest, what we should do for > OPTIONS /foo if /foo is a protected entity... Reading > 9.2: "communication options available on the request/response > chain... without implying a resource action or initiating a > resource retrieval" implies to me that ACL shouldn't even > enter into it and should never return a 403... Which > also implies that we should not honor any Limit for > Options either... No, what the client wants are the communication options. It is commonly used to find out what is required for a PUT before the request with big body is sent. We want to return 401, 403, ... ....Roy