- From: Henry Story <henry.story@bblfish.net>
- Date: Tue, 29 Nov 2011 10:38:37 +0100
- To: Daniël Bos (远洋) <corani@gmail.com>
- Cc: WebID XG <public-xg-webid@w3.org>, FOAF Protocols <foaf-protocols@lists.foaf-project.org>, jbonofre@apache.org
Daniel, I'd suggest they consider WebID very early in their architecture process. You may have difficulty getting them to think that is important, but the likelihood that WebID brings up some issues that they had not thought about, and opens avenues they had not considered is great. Also if you communicate with them please point them to the official spec, not to the wiki http://www.w3.org/2005/Incubator/webid/spec/ or the Twitter URL http://webid.info/spec I am working with Apache, but I am finding it difficult being everywhere at once, and getting involved in one more project is going to be difficult. If they are doing this in Java/Scala there is up-to-date code in the https://github.com/bblfish/clerezza/ and also there is Scala code that I am working on with more determination in https://dvcs.w3.org/hg/read-write-web/ the netty component there also solves a lot of further issues. Henry On 29 Nov 2011, at 03:18, Daniël Bos (远洋) wrote: > While browsing the Apache incubator mailing list, I came across a > proposal for incubation of Fediz [1]. The proposal to the mailing list > can be found here [2]. I've added Jean-Baptiste Onofré, who made the > proposal to the incubator list, to the discussion. For their > convenience, I've added a link [3] and a short description [4] of the > WebID protocol to the bottom of this email. > > From their website: > > "The idea of WS-Federation for Web SSO is to externalize the > authentication process to a centralized authentication server (called > Identity Provider (IDP)) which can support any kind of authentication > mechanism. The IDP issues a security token like SAML which contains > the authenticated entity as well as role information and/or other > claim data of a user like name, email, others which is sent to the > application (called Relying Party (RP))." > > It sounds like it would be a good match for them to incorporate WebID > as (one of) the authentication mechanisms. They are currently looking > for more mentors to start incubation. If there are Apache members on > this list who want to help this project move along, I'd encourage them > to check out the proposal. > > I will continue to track this project and check out their source code > once it is published for opportunities to incorporate WebID. If the > project is accepted for incubation, and mailing lists are created, I > will also pitch WebID there. > > [1] http://wiki.apache.org/incubator/FedizProposal > [2] http://mail-archives.apache.org/mod_mbox/incubator-general/201111.mbox/%3C4EAFBA3A.9020802@nanthrax.net%3E > [3] http://www.w3.org/wiki/WebID > [4] "WebID is an authentication protocol that uses the SSL/TLS layer > for user identification by tying the client to a profile document on > the web through placing a URI in the Subject Alternative Name field in > an X509 certificate. This is the first step to a fully standard-based > browser authentication experience. Of course it is not limited to > browser based authentication: peer to peer server authentication will > work just as well." > > -- > 远洋 / Daniël Bos > _______________________________________________ > foaf-protocols mailing list > foaf-protocols@lists.foaf-project.org > http://lists.foaf-project.org/mailman/listinfo/foaf-protocols Social Web Architect http://bblfish.net/
Received on Tuesday, 29 November 2011 09:39:18 UTC