Respect Client Boundaries
Stay inside the scope the host permits.
Knowing Isn't Enough
You can fetch roots and read capabilities, but the real job is honoring them. A trustworthy server stays inside the lines the host drew for it. 🚧
Stay Inside the Roots
Before touching any file, confirm its path sits within one of the client's roots. If it does not, refuse rather than reaching outside the allowed area.
All lessons in this course
- What Roots Tell a Server
- Request the Client's Roots
- Negotiating Capabilities
- Respect Client Boundaries