James M Snell wrote:
Woo hoo! We just reinvented SoapAction! Life is good.
If I wasn't convinced this was a bad idea before, I am now. Didn't SOAP already teach us what happens when you try to tunnel everything through POST to get around firewalls?
Here's a thought: some organizations may have good security based reasons for disallowing PUT or DELETE from some or all addresses. If so, then they would want those features of APP to be blocked. We should allow this.
In other words, the ability to selectively block PUT and/or DELETE while still allowing POST and GET is a feature, not a bug. Servers using this feature for no good reason should be reconfigured to allow PUT and DELETE. However we shouldn't make everyone implement it if they have good reasons not to.
-- Elliotte Rusty Harold [EMAIL PROTECTED] XML in a Nutshell 3rd Edition Just Published! http://www.cafeconleche.org/books/xian3/ http://www.amazon.com/exec/obidos/ISBN=0596007647/cafeaulaitA/ref=nosim
