Hello, the use case is: A WebDAV (CalDAV/CardDAV) server offers: * calendars for authenticated users * calendars for unauthenticated users * the bootstrapping procedure described in RFC 6764.
So the server returns one set of availabe calendars (caldav collections) for unauthenticated user, and a super set of available calendars (caldav collections) for authenticated users. But it never returns 401 Authenticate error, as long as an unauthenticated user does not do PUT. With this scenario the user must know, whether it wants to authenticate or not from the beginning, and the webdav client has to enforce what the user wants, before seeing 401 (as it will never be sent). Cf. https://github.com/jobisoft/DAV-4-TbSync/issues/106 . The way to get the set of offered authentication schemas is to send an invalid user: curl -D- -u...@example.net:a -XPROPFIND https://mail.aegee.org/dav/addressbooks/ then the server returns WWW-Authenticate with the supported mechanisms. Regards Дилян _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform