Re: Announcing Access Authorization Documentation

Christopher.McRae@library.ucsf.edu (Christopher McRae)

Mail folder: WWW Talk Jul-Oct 1993
Next message: Terry Allen: "Re: Status of Tables in HTML+?"
Previous message: Omy Ronquillo: "Forget my previous message"
In-reply-to: Ari Luotonen: "Announcing Access Authorization Documentation"

Message-id: <199309102347.AA09233@library.ucsf.edu>
From: Christopher.McRae@library.ucsf.edu (Christopher McRae)
Organization: UCSF Center for Knowledge Management
Email: mcrae@ckm.ucsf.edu or uunet!mcrae
Phone: 415/476-3577
Fax: 415/476-4653
To: luotonen@ptsun00.cern.ch (Ari Luotonen)
Cc: www-talk@library.ucsf.edu
In-reply-to: Your message of Fri, 10 Sep 1993 16:53:56 +0200
	<9309101453.AA14938@ptsun00.cern.ch> 
Subject: Re: Announcing Access Authorization Documentation 
Date: Fri, 10 Sep 1993 16:52:48 PDT
Sender: Christopher.McRae@library.ucsf.edu
Status: RO

Ari,
  I've read through your documentation and it looks good except for
one issue: there is no provision for controlling access *per method*.
Once we have implemented the PUT and POST methods of HTTP, I expect
it will be quite common for a webmaster to wish to allow for many
readers relative to the number of writers for a particular resource.
  I suggest that you add a <methods> field to the .www_acl file, such as

    method,method,...:template: group,user,group,...

or some other syntax.  Alternatively, you could specify the methods in
the rule file, but the access list seems a better place to me.
  Also, could you clarify some thing for me?  Regarding the <template>
specified in the protect rule of the rule file and also in each entry of
the access control list: Does this <template> refer only to files or can
it be a subdirectory - the latter indicating that the entire hierarchy
is to be accessible only to those in the corresponding user/group list?
Here are the pertinent references:

In <http://info.cern.ch/hypertext/WWW/AccessAuthorization/RuleFile.html> you
write

    The protect rule has two forms unifrom with those of the pass rule: 

	    protect <template>

    The filename matching the <template> is protected...

and also in 
<http://info.cern.ch/hypertext/WWW/AccessAuthorization/AccessControlList.html>,

    template is the name of a file in that directory

---------------------
Ari Luotonen writes:

Date: Fri, 10 Sep 93 16:53:56 +0200
From: luotonen@ptsun00.cern.ch (Ari Luotonen)
Message-Id: <9309101453.AA14938@ptsun00.cern.ch>
To: www-talk@nxoc01.cern.ch
Subject: Announcing Access Authorization Documentation


The pre-release of WWW Access Authorization Documentation has
been hung to the Web:

    WWW Project Home Page / Technical / Access Authorization

or URL:
 
    http://info.cern.ch/hypertext/WWW/AccessAuthorization/Overview.html
 
[remaining stuff deleted]
---------------------

Thanks,
Chris
--------------------------------------------------------------------------------
Christopher McRae			mail: mcrae@ckm.ucsf.edu
UCSF Center for Knowledge Management	at&t: 415/476-3577
530 Parnassus Avenue, Box 0840	 	fax: 415/476-4653
San Francisco, California 94143