Re: Solid App Authorization from Kingsley Idehen on 2019-08-01 (public-solid@w3.org from August 2019)

From: Kingsley Idehen <kidehen@openlinksw.com>
Date: Thu, 1 Aug 2019 08:27:34 -0400
To: public-solid@w3.org
Message-ID: <f561a712-04de-671a-de0c-263daf47b0f4@openlinksw.com>
On 7/31/19 11:26 PM, Michael Pigott wrote:
> Thanks everyone for the feedback!  If I'm following this discussion
> correctly, I should investigate the solid-auth-client.js library
> ( https://github.com/solid/solid-auth-client ) and use that in my
> application?


Look at the code in my example which is an example of what the
solid-auth-client offers re WebID-OIDC + WebID-TLS Bridge i.e.,
application users will be able to use either protocol, and you don't
need to get entangled in the complexities associated with using these
protocols from a Single Page Application.

The challenge for Solid remains a shortage of simple practical usage
examples that focus on specific aspects of its value proposition. That's
why we are investing time in making these kinds of examples.

*Problem:*

I want to write a Single Page Application using Javascript that's
deployed via an HTML document. How do I achieve that goal without
compromising the security of data data and/or the privacy of my users?

*Solution:*

Use the solid-auth-client to handle the authentication aspects of your
solution. Use WebACLs to protect the data.

*How:*

Goto:
http://kingsley.idehen.net/public_home/kidehen/Public/Linked%20Data%20Documents/Playground/basic-html5-cors-sparul-form-sergey2.html



Kingsley

>
> Thanks!
> Mike
>
> On Wed, Jul 31, 2019 at 6:43 PM Kingsley Idehen
> <kidehen@openlinksw.com <mailto:kidehen@openlinksw.com>> wrote:
>
>     On 7/31/19 5:31 PM, Henry Story wrote:
>>     There is an alternative that would be very close to 
>>     WebID-TLS and that would work very well with 
>>     HTTP2.0 and that is using HTTP-Signatures and JS-Crypto.
>>     See my implementation from a few years back
>>
>>     Server side:
>>     https://github.com/read-write-web/akka-http-signature
>>     It has all the links to the docs
>>
>>     and I think the use of JS-Crypt on the client is here
>>     https://github.com/read-write-web/solid-client
>>     But I need to update it.
>>
>>     This has all the efficiency advantages of WebID-TLS 
>>     but does not have the UI built in that could have been
>>     hoped for with client certificates (though key gen still
>>     works in Netscape I hear)
>>
>>     Henry Story
>>
>
>     Hi Henry,
>
>     What's wrong with WebID-OIDC + WebID-TLS bridge that currently
>     exists?
>
>     The problem I see with all of this is the lack of simply usage
>     examples.
>
>     Here something we've been playing with en route to making a simple
>     guide for building Single Page Applications that leverage the
>     solid-auth-client library:
>
>     http://kingsley.idehen.net/public_home/kidehen/Public/Linked%20Data%20Documents/Playground/basic-html5-cors-sparul-form-sergey2.html
>
>
>     Naturally, the document "view source" and copy and paste friendly
>     i.e., you can see all sources via your browsers inspector and just
>     copy to your own data space etc.. All of this using what exists
>     today :)
>
>     -- 
>     Regards,
>
>     Kingsley Idehen       
>     Founder & CEO 
>     OpenLink Software   
>     Home Page: http://www.openlinksw.com
>     Community Support: https://community.openlinksw.com
>     Weblogs (Blogs):
>     Company Blog: https://medium.com/openlink-software-blog
>     Virtuoso Blog: https://medium.com/virtuoso-blog
>     Data Access Drivers Blog: https://medium.com/openlink-odbc-jdbc-ado-net-data-access-drivers
>
>     Personal Weblogs (Blogs):
>     Medium Blog: https://medium.com/@kidehen
>     Legacy Blogs: http://www.openlinksw.com/blog/~kidehen/
>                   http://kidehen.blogspot.com
>
>     Profile Pages:
>     Pinterest: https://www.pinterest.com/kidehen/
>     Quora: https://www.quora.com/profile/Kingsley-Uyi-Idehen
>     Twitter: https://twitter.com/kidehen
>     Google+: https://plus.google.com/+KingsleyIdehen/about
>     LinkedIn: http://www.linkedin.com/in/kidehen
>
>     Web Identities (WebID):
>     Personal: http://kingsley.idehen.net/public_home/kidehen/profile.ttl#i
>             : http://id.myopenlink.net/DAV/home/KingsleyUyiIdehen/Public/kingsley.ttl#this
>

-- 
Regards,

Kingsley Idehen       
Founder & CEO 
OpenLink Software   
Home Page: http://www.openlinksw.com
Community Support: https://community.openlinksw.com
Weblogs (Blogs):
Company Blog: https://medium.com/openlink-software-blog
Virtuoso Blog: https://medium.com/virtuoso-blog
Data Access Drivers Blog: https://medium.com/openlink-odbc-jdbc-ado-net-data-access-drivers

Personal Weblogs (Blogs):
Medium Blog: https://medium.com/@kidehen
Legacy Blogs: http://www.openlinksw.com/blog/~kidehen/
              http://kidehen.blogspot.com

Profile Pages:
Pinterest: https://www.pinterest.com/kidehen/
Quora: https://www.quora.com/profile/Kingsley-Uyi-Idehen
Twitter: https://twitter.com/kidehen
Google+: https://plus.google.com/+KingsleyIdehen/about
LinkedIn: http://www.linkedin.com/in/kidehen

Web Identities (WebID):
Personal: http://kingsley.idehen.net/public_home/kidehen/profile.ttl#i
        : http://id.myopenlink.net/DAV/home/KingsleyUyiIdehen/Public/kingsley.ttl#this
Attachments

application/pkcs7-signature attachment: S/MIME Cryptographic Signature
Received on Thursday, 1 August 2019 12:28:02 UTC