[OGo-Users] contacts with no access in
zidestore/user/public/Contacts
Adam Tauno Williams
users@opengroupware.org
Wed, 04 Oct 2006 10:17:36 -0400
> > I think an option in the address book to silently pass on objects
> > were a
> > permission-denied occurs is the correct solution.
> Yes, this would be useful. Should be added to the GroupDAV spec too.
> While its technically still incorrect in ZideStore, its quite likely
> nevertheless that a "listing" privilege is different from a "read"
> privilege.
Yep, IMAP at least works this way too. And for something like
scheduling it is important for a client to know that 'yes, such a
contact exists' even though it doesn't have 'access'. Else it is easy
to get into a situation where someone modifying an object without access
to all related entries might cause information loss.
> So a GroupDAV client should expect to get a HTTP 403/404
> even if the PROPFIND returned a result and deal gracefully with that.