Open macosforgebot opened 14 years ago
douglm@… originally submitted this as ticket:373
test 6 of CalDAV/acl.xml appears to be testing deny before grant restrictions by sending an acl with a deny before a grant.
RFC3744 says
5.6.3. DAV:deny-before-grant This element indicates that all deny ACEs must precede all grant ACEs. <!ELEMENT deny-before-grant EMPTY>
and
8.1.1. ACL Preconditions ... (DAV:deny-before-grant): All non-inherited deny ACEs MUST precede all non-inherited grant ACEs.
while the test appears to be checking for the reverse, i.e. grant must precede deny
@wsanchez originally submitted this as comment:1:ticket:373
@wsanchez originally submitted this as comment:7:ticket:373
douglm@… originally submitted this as ticket:373
test 6 of CalDAV/acl.xml appears to be testing deny before grant restrictions by sending an acl with a deny before a grant.
RFC3744 says
and
while the test appears to be checking for the reverse, i.e. grant must precede deny