* GET, PUT, DELETE requests on files and folders
* Opaque version strings (in directory listings and "ETag" header)
* Conditional PUT and DELETE requests ("If-Match", "If-None-Match" headers)
+* Protection of all non-public paths via Bearer token authorization.
+* Special handling of public paths (i.e. those starting with /public/), such that
+ requests on non-directory paths succeed without authorization.
* HEAD requests on files and folders with "Content-Length" header
(not part of remotestorage-01)