Re: Linked Media: Extending Linked Data for Updates and arbitrary Media Formats using the REST Principles

Thu, 05 May 2011 10:42:36 -0700 

On 5/5/11 8:14 AM, Sebastian Schaffert wrote:

Dear Kingsley,


Am 05.05.2011 um 14:01 schrieb Kingsley Idehen:


On 5/5/11 6:06 AM, Sebastian Schaffert wrote:

  + How is authentication and authorisation handled (like WebID [5] and WAC 
[6])?

Since we are an applied research centre, we want to be standards-based as far 
as possible. There are actually two separate issues you are suggesting here. 
Authentication and authorisation. The authentication we are working on will be 
based on OAuth2, and we already have an experimental implementation for that. 
For authorisation we are planning to use access control lists in some form, but 
this is not really thought through yet- The proposal in [6] looks promising for 
access control lists.




Put differently, the question above is about this: are you aware of the WebID 
protocol, and its fidelity re. RESTful interaction with Data Objects?

WebID provides a fine grained solution for ACL constrained interaction with 
Data Objects via their URIs.


Yes, we are aware of the WebID protocol. In fact, Henry Story has worked with 
us on FOAF+SSL in the scope of the KiWi project when he was still at Sun. And I 
have been in contact with some of the WebID people regarding a EU proposal on 
user profile management using Linked Data. ;-)

But the hint to the access control lists is very valuable in any case, because 
for me WebID was mainly a way of authenticating a user and not for authorising 
and managing access to resources. Indeed, I didn't find a reference to access 
control lists in the two references you send, and neither in the emerging 
specification at [3]. Can you point me to it?

[3] http://www.w3.org/2005/Incubator/webid/spec/



Links:

1. http://www.w3.org/wiki/WebID - WebID Wiki
2. http://bblfish.net/tmp/2011/04/26/ -- WebID Protocol&  Browsers Paper for 
upcoming W3C workshop on Identity in the Browser


Greetings,


Sebastian

Sebastian,
WebID enables us to RESTfully interact with resources that are protected by WebID based ACLs . 


Links:

1. http://www.w3.org/DesignIssues/CloudStorage.html -- the abstract
2. http://uriburner.com/describe/?uri=http%3A%2F%2Fwww.w3.org%2Fns%2Fauth%2Facl -- ACL Ontology description 2. http://lists.foaf-project.org/pipermail/foaf-protocols/2010-September/003706.html -- old callout for WebID based ACL interop using live WebID ACL based data spaces . 

--

Regards,

Kingsley Idehen 
President&  CEO
OpenLink Software
Web: http://www.openlinksw.com
Weblog: http://www.openlinksw.com/blog/~kidehen
Twitter/Identi.ca: kidehen

Reply via email to