HOWOTO make a WebID manually - was: WebID Frustration from Henry Story on 2013-08-06 (public-lod@w3.org from August 2013)

From: Henry Story <henry.story@bblfish.net>
Date: Wed, 7 Aug 2013 01:21:03 +0200
To: Sarven Capadisli <info@csarven.ca>
Cc: public-lod@w3.org
Message-Id: <15DA52FC-BF9B-4DFC-AB70-51406A828C2A@bblfish.net>

On 7 Aug 2013, at 01:02, Sarven Capadisli <info@csarven.ca> wrote:

> On 08/06/2013 01:37 PM, Hugh Glaser wrote:
>> Well, RWW.IO looked exciting, so I decided to start with it.
>> And it seemed a good idea to have an account, so I decided I would finally create a WebID login - I know that lots of people think that this is the Way Ahead.
>> I have a foaf file (actually more than one), and trawling the web, it seems that I if I have a foaf file I can use it for WebID.
>> I certainly don't want to create it on some other site - I need another account like I need a hole in the head - in fact, that is what is meant to be good about WebID!
>> Surely it isn't "Just one last new account".
>> 
>> Anyway, you can guess that a while later I still don't seem to have managed it.
>> I have read any number of pages that give me "simple" guides to doing stuff, with links to things that should help, etc. (often dead).
>> I confess that I was definitely looking for the easiest way - for example, downloading a program to run just doesn't seem the sort of thing I want to do for something that is meant to be simple.
>> Sorry if that all sounds provocative, but I am a bit frustrated!
>> 
>> So have I missed something here?
>> Is there really not a page that will really work for me?
>> I'm using Safari on a Mac, by the way.
>> And I'm trying to login in to https://hugh.rww.io
>> 
>> Best
>> Hugh
> 
> Just dropping this here for anyone that finds it useful.
> 
> The following will get you a public key that you can use in your WebID profile, a certificate that you can use to digitally sign your emails as well as to authenticate from your Web browser:
> 
> Create a public/private key as you would to SSH to networks:
> 
> $ ssh-keygen
> 
> Add your URI and email in openssl.cnf, then create the certificate using your private key from above. Import from your email client:
> 
> $ openssl req -x509 -new -config openssl.cnf -days 36500 -key id_rsa -out id_rsa.crt
> 
> Export to PKCS #12 and import from your browser:
> 
> $ openssl pkcs12 -export -in id_rsa.crt -inkey id_rsa -out id_rsa.p12
> 
> Copy/paste certificate signature value into your WebID profile.

Thanks Sarven. We should add the above to a HOWTO, and add the following perhaps.

Just add use this as a pattern:

@prefix cert: <http://www.w3.org/ns/auth/cert#> .

?webid cert:key [ cert:modulus "..."^^xsd:hexBinary;
                  cert:exponent 65537 ] . # replace number with actual value

as described in 
  https://dvcs.w3.org/hg/WebID/raw-file/tip/spec/tls-respec.html#publishing-the-certificate-data-in-a-webid-profile-document


Where would be a good place to put this? We used to have this:
http://www.w3.org/wiki/Foaf%2Bssl/HOWTO

But I think it would be good to move it to an official wiki spot on our Community wiki.

Henry

> 
> -Sarven
> http://csarven.ca/#i
> 

Social Web Architect
http://bblfish.net/

Received on Tuesday, 6 August 2013 23:21:34 UTC