-
Suggestion
-
Resolution: Won't Fix
-
None
Thank you for the WebDAV support!
Is it possible to pass the user to the underlying WebDAV user so the user owns the folder and files created. This will allow the a user protect their attachments.
Some thoughts on how to do this:
1. Assumption: webdav session is less than conf session
2. When user logs in to conf, their credentials are passed to webdav, establishing a session on server.
3. Any requests for attachment uses the established session (if the session terminates, either terminate the user's session or prompt to login again.
This wouldn't work for the remember me functionality :{
The other option is to cache the credentials in memory and reuse those credentials everytime the user needs access to the WebDAV server. Perhaps encrypt the passwords with a random key (persisted for the length of the vm or longer) so they're not floating out in the open.
Also, a mechanism for opening the document through webdav might be desireable as well. An edit button on the attachment page that opened the document through webdav (Microsoft Office will allow the user to save the content back to the server).