[GH-ISSUE #268] A limited user shows root folder when using webdav #141

New Issue

Closed

opened 2026-04-08 16:50:38 +03:00 by zhus · 1 comment

zhus commented 2026-04-08 16:50:38 +03:00

Owner

Copy Link

Originally created by @fimmspin on GitHub (Sep 26, 2023).
Original GitHub issue: https://github.com/sigoden/dufs/issues/268

I have an admin user with full access to / folder and a limited user with access only to /TEMP folder.

If connecting via web all is OK and showed correctly.

If connecting via Windows Webdav mapped drive using the limited user credentials i see the / root folder file listing and folders (there is really no access to file contents, resulting in a 401 or 403 error, correctly).

Would it be possible to set the /TEMP folder directly as / root when using the limited user credentials, as in the web version?

Environment:

• Dufs version: 0.36.0
• Browser/Webdav Info: Chrome/Windows 8.1 webdav
• OS Info: Windows 8.1

Originally created by @fimmspin on GitHub (Sep 26, 2023). Original GitHub issue: https://github.com/sigoden/dufs/issues/268 I have an admin user with full access to / folder and a limited user with access only to /TEMP folder. If connecting via web all is OK and showed correctly. If connecting via Windows Webdav mapped drive using the limited user credentials i see the / root folder file listing and folders (there is really no access to file contents, resulting in a 401 or 403 error, correctly). Would it be possible to set the /TEMP folder directly as / root when using the limited user credentials, as in the web version? **Environment:** - Dufs version: 0.36.0 - Browser/Webdav Info: Chrome/Windows 8.1 webdav - OS Info: Windows 8.1

zhus closed this issue 2026-04-08 16:50:38 +03:00

zhus commented 2026-04-08 16:50:38 +03:00

Author

Owner

Copy Link

@sigoden commented on GitHub (Sep 26, 2023):

The awser is same to #263

Webdav must be designed like this.

This is because some webdav clients do not carry the Authorization header when listing files.

<!-- gh-comment-id:1735349155 --> @sigoden commented on GitHub (Sep 26, 2023): The awser is same to #263 Webdav must be designed like this. This is because some webdav clients do not carry the Authorization header when listing files.

zhus referenced this issue 2026-04-08 16:53:09 +03:00

[PR #145] [MERGED] feat: support unix sockets #490

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

chore-release

v0.46.0-rc1

v0.45.0

v0.44.0

v0.43.0

v0.42.0

v0.41.0

v0.40.0

v0.39.0

v0.38.0

v0.37.1

v0.37.0

v0.36.0

v0.35.0

v0.34.2

v0.34.1

v0.34.0

v0.33.0

v0.32.0

v0.31.0

v0.30.0

v0.29.0

v0.28.0

v0.27.0

v0.26.0

v0.25.0

v0.24.0

v0.23.1

v0.23.0

v0.22.0

v0.21.0

v0.20.0

v0.19.0

v0.18.0

v0.17.1

v0.17.0

v0.16.0

v0.15.1

v0.15.0

v0.14.0

v0.13.2

v0.13.1

v0.13.0

v0.12.1

v0.11.0

v0.10.1

v0.10.0

v0.9.0

v0.8.0

v0.7.0

v0.6.0

v0.5.0

v0.4.0

v0.3.0

v0.2.1

v0.2.0

v0.1.0

Labels

Clear labels

bug

enhancement

help wanted

pull-request

Mirrored from GitHub Pull Request

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

zhus

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: sigoden/dufs#141