Re: HOWOTO make a WebID manually - was: WebID Frustration

On 08/07/2013 01:21 AM, Henry Story wrote:
>
> On 7 Aug 2013, at 01:02, Sarven Capadisli <info@csarven.ca> wrote:
>
>> On 08/06/2013 01:37 PM, Hugh Glaser wrote:
>>> Well, RWW.IO looked exciting, so I decided to start with it.
>>> And it seemed a good idea to have an account, so I decided I would finally create a WebID login - I know that lots of people think that this is the Way Ahead.
>>> I have a foaf file (actually more than one), and trawling the web, it seems that I if I have a foaf file I can use it for WebID.
>>> I certainly don't want to create it on some other site - I need another account like I need a hole in the head - in fact, that is what is meant to be good about WebID!
>>> Surely it isn't "Just one last new account".
>>>
>>> Anyway, you can guess that a while later I still don't seem to have managed it.
>>> I have read any number of pages that give me "simple" guides to doing stuff, with links to things that should help, etc. (often dead).
>>> I confess that I was definitely looking for the easiest way - for example, downloading a program to run just doesn't seem the sort of thing I want to do for something that is meant to be simple.
>>> Sorry if that all sounds provocative, but I am a bit frustrated!
>>>
>>> So have I missed something here?
>>> Is there really not a page that will really work for me?
>>> I'm using Safari on a Mac, by the way.
>>> And I'm trying to login in to https://hugh.rww.io
>>>
>>> Best
>>> Hugh
>>
>> Just dropping this here for anyone that finds it useful.
>>
>> The following will get you a public key that you can use in your WebID profile, a certificate that you can use to digitally sign your emails as well as to authenticate from your Web browser:
>>
>> Create a public/private key as you would to SSH to networks:
>>
>> $ ssh-keygen
>>
>> Add your URI and email in openssl.cnf, then create the certificate using your private key from above. Import from your email client:
>>
>> $ openssl req -x509 -new -config openssl.cnf -days 36500 -key id_rsa -out id_rsa.crt
>>
>> Export to PKCS #12 and import from your browser:
>>
>> $ openssl pkcs12 -export -in id_rsa.crt -inkey id_rsa -out id_rsa.p12
>>
>> Copy/paste certificate signature value into your WebID profile.
>
> Thanks Sarven. We should add the above to a HOWTO, and add the following perhaps.
>
> Just add use this as a pattern:
>
> @prefix cert: <http://www.w3.org/ns/auth/cert#> .
>
> ?webid cert:key [ cert:modulus "..."^^xsd:hexBinary;
>                    cert:exponent 65537 ] . # replace number with actual value
>
> as described in
>    https://dvcs.w3.org/hg/WebID/raw-file/tip/spec/tls-respec.html#publishing-the-certificate-data-in-a-webid-profile-document
>
>
> Where would be a good place to put this? We used to have this:
> http://www.w3.org/wiki/Foaf%2Bssl/HOWTO
>
> But I think it would be good to move it to an official wiki spot on our Community wiki.
>
> Henry
>
>>
>> -Sarven
>> http://csarven.ca/#i
>>
>
> Social Web Architect
> http://bblfish.net/

Henry, I've added it to the wiki for now before it gets forgotten. It 
can be relocated later.

http://www.w3.org/wiki/index.php?title=Foaf%2Bssl%2FHOWTO&diff=67728&oldid=61017

-Sarven
http://csarven.ca/#i