[Use of copyrighted material without permission or consent]

[RubenVerborgh]

No description provided.

[michielbdejong]

If you create C/R and C/ gets created on the fly (transparently), then the information about whether C/ existed beforehand stays more hidden, not less hidden?

[csarven]

Reopening the issue as it was closed by a non-CG member at the time, without CG's consent. The last useful revision in #139 (comment) is below, before the comment was erased.

---

This is a security follow-up on #68.

Servers are allowed to use 404 for 2 cases:

1. when a resource does not exist
2. when it does not want to acknowledge whether a resource exists

In #68, the current resolution is to automatically create intermediate containers as needed when a deeper document is created through PATCH (and perhaps other methods). In that case, success or failure of that operation might leak information in case 2 above.

[csarven]

GitHub's ToS allow users to reference and reuse publicly available comments within GitHub (see Section D.5). And, the Solid GitHub org operates under an MIT license, promoting open collaboration and transparency. Additionally, as part of the Solid CG, contributions fall under the W3C Community Group CLA, which permits broad reuse within the community.