Project

General

Profile

Bug #1396

webdav options are missing if path is under authorization

Added by HenrikHolst almost 13 years ago. Updated about 12 years ago.

Status:
Fixed
Priority:
Normal
Category:
core
Target version:
ASK QUESTIONS IN Forums:

Description

If a client sends a OPTIONS method for a resource that is under authorization, then mod_auth blocks the other modules from inserting their options since it breaks the calling chain. To make matters worse, the lighttpd core sends a 200 for all OPTIONS requests.

One case where this fails miserably is webdav, the Windows Web Folders client and the davfs2 (neon based) filesystem checks for DAV compliance with OPTIONS before allowing a server. Since mod_auth blocks mod_webdav from inserting it's options and the reply is a 200 (so that the client does not know that it has to send it's credentials) the connection is refused by the client.

I have included a small patch which changes this last behaviour into replying with 401 if authorization is required. I have tested this against both neon and the Windows Web Folders Client and they both work properly now.

This is the same patch as in ticket #1324 but this time for 1.5.x together with better keywords etc.


Files

connections.patch (516 Bytes) connections.patch patch for connections.c HenrikHolst, 2007-10-02 08:43
#1

Updated by stbuehler about 12 years ago

  • Status changed from New to Fixed
  • Resolution set to fixed

fixed in r2232.

Also available in: Atom