5.1.3 Permissions for Objects

Like most file systems, FrontPage Server Extensions: Website Management Protocol objects can have a notion of security. The granularity of this security is up to the server implementers. Microsoft Windows® implementations of the FrontPage Server Extensions: Website Management Protocol provide the capability to granularly control read access and write access on files, folders, and services. On a secured server, each method call SHOULD check the appropriate rights before executing. If the user does not have sufficient rights, the implementation SHOULD trigger the HTTP layer to return a 401 message, access denied. The HTTP layer on the client and server SHOULD then manage authenticating the user, if that user does in fact have permissions.