the problem is that most (webdav)clients first issue a request without authorization header, even if you specify a user/pass (eg. m$ webfolders). this resulted in a null-login on the repository, which gives a read-only user (with the default settings).
according to marcels mail ("anonymous login") the null-credentials login results in an exeception:
"- Using the default configuration Repository.login() and Repository.login(String) will now throw a LoginException"
i added the 'missing-auth-mapping' init parameter for the RepositoryAccessServlet. If this param is given, a null-login or a predefined user-login is done. if this param is missing, the servlet throws a LoginException which results in sending a 401.
thanks.
