On Mar 4, 2010, at 1:11 AM, Story Henry wrote: > > On 4 Mar 2010, at 00:29, Caleb James DeLisle wrote: > >> I just installed and ran the application. It generates RSA keys with SHA1 >> hash and PKCS #1 padding scheme. In Firefox it will generate 2048 bit keys >> but Opera will generate keys up to 4096 bit. >> >> The keys are good for signing and cryptographic negotiation and expire after >> 1 year. > > The form could ask the user how long he wants his certificates to last for. > Currently the default is one year, but its a simple matter of tweaking the > velocity to have that be anything else. Perhaps we should make the default > shorter. > > A test form to play around with these options is available on the > WebId.CreateCert page. > >> >> Firefox and Opera Javascript have a method crypto.signText() which >> apparently will support signing of form data on the client side which has a >> wide array of use cases including signing XWikiDocuments in so they can be >> imported and exported while retaining their author field. >> see: http://docs.sun.com/source/816-6152-10/sgntxt.htm > > that sounds very interesting... > >> >> Currently there is no component in the application for validating keys, only >> creating them. > > I was going to work on the login component next... There is a page of some of > the services that one can use to login to here: > http://esw.w3.org/topic/foaf+ssl/RelyingParties > This should be growing quickly as Tim Berners Lee has been backing this > effort more visibly recently. Today he gave a talk entitled > > "Distributed Social Networking > > Through > > Socially Aware Cloud Storage" > > http://www.w3.org/2010/Talks/0303-socialcloud-tbl/ > > Which places WebIds and foaf+ssl at the center of the architecture. > > With some notes taken here: http://www.w3.org/2010/03/03-swxg-minutes.html > >> Here's my +1 for adding to the incubator and continuing to explore use cases. > > Thanks :-) > > As most of this is velocity code we should be able to tweak it when its up on > the incubator site. > One thing I thought would be very nice would be to add the following lines to > the header > > <link rel="openid.server" href="http://openid4.me/index.php"; /> > <link rel="openid2.provider openid.server" > href="http://openid4.me/index.php"/> > <link rel="meta" type="application/rdf+xml" title="FOAF" > href="your_foaf_file"/>
This can be easily added with Link Extension, see http://platform.xwiki.org/xwiki/bin/view/DevGuide/SkinExtensionsTutorial Thanks -Vincent > > Every profile page would as a result become an OpenId backed by foaf+ssl. > > There are a few problems though with this, so we can't do it immediately: > > - I don't know how to add those to the headers from the XWikiUserProfileSheet > page > - openid4.me requires a pointer to an rdf/xml foaf file for the moment. I'll > ask them to tweak their code so they can accept html marked up with rdfa > - the home page urls are currently too long to make useful OpenIds. To be > typable they should be something like http://xwiki.org/bblfish or > http://xwiki.org/p/bblfish > > So lots more fun stuff to come... > > Henry > >> >> >> Caleb >> >> >> Story Henry wrote: >>> I placed the jar and xar here: >>> >>> http://bblfish.net/tmp/2010/02/xwiki/ >>> >>> to make it simpler. Though git is quite easy to get btw. For OSX I found it >>> here >>> >>> http://code.google.com/p/git-osx-installer/ >>> >>> The README for installation is online here: >>> >>> http://github.com/bblfish/keygenapp/blob/master/xwiki/README.txt >>> >>> Henry >>> >>> On 25 Feb 2010, at 19:16, Vincent Massol wrote: >>> >>>> Just to be clear: >>>> >>>> +1 from me to deploy it on incubator.myxwiki.org >>>> >>>> If I can get one or 2 more +1 then I could help Henry deploy it and give >>>> him the rights for incubator. >>>> >>>> Thanks >>>> -Vincent >>>> >>>> On Feb 24, 2010, at 10:15 AM, Vincent Massol wrote: >>>> >>>>> Hi Henry and all, >>>>> >>>>> On Feb 23, 2010, at 7:52 PM, Story Henry wrote: >>>>> >>>>>> Hi, >>>>>> >>>>>> I have built a little keygen application for Xwiki now. It is available >>>>>> here: >>>>>> >>>>>> http://github.com/bblfish/keygenapp >>>>>> >>>>>> You can download it with >>>>>> >>>>>> $ git clone [email protected]:bblfish/keygenapp.git _______________________________________________ devs mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/devs
