W3C home > Mailing lists > Public > public-webid@w3.org > August 2012

Re: Extending the WebID protocol with Access Delegation

From: Henry Story <henry.story@bblfish.net>
Date: Fri, 17 Aug 2012 21:42:16 +0200
Cc: public-webid@w3.org
Message-Id: <4293DDA1-828F-4172-B0F7-F36A9BE57B2E@bblfish.net>
To: Kingsley Idehen <kidehen@openlinksw.com>

On 17 Aug 2012, at 14:42, Kingsley Idehen <kidehen@openlinksw.com> wrote:

> On 8/17/12 3:22 AM, Henry Story wrote:
>> Still I think you make a good point. We should in the paper try to specify much more precisely
>> WHEN this protocol is needed.
>> 
>> 
>> So for example I think that if all the resources served by a server return the same representation irrespective of who makes the request, then the solution you outline may be thought to be completely satisfactory.
> 
> And it should be so. This is why we built Linked Data transformation middleware i.e., turn as many data formats as possible into 5-star Linked Data resources.
>> 
>> But then if we think of it perhaps not. The On-Behalf-Of Request made by the secretary is a way for the
>> secretary to indicate that she will not pass that information on to anyone other than the person she is working on behalf-of.
> 
> The ACL engine can figure that out once it has access to the identity that the secretary is acting on behalf-of. In the real world the secretary relationship is established and verifiable by way of organization structure (just another graph in a different realm).

The secretary still needs to say for each request on whose behalf she is working. There is no way around that.

> 
>> It makes a commitment of secrecy by the client. This "legal" aspect could also be developed more in the paper.
> The semantics are what matter.

yes, they need to be spelled out. In CORS the server also acknowledges that it has understood the Origin header. We don't have that here, which should make us think that we are perhaps missing something.

>> 
>> I am off for a week to a philosophy conference so I won't be very responsive.
> 
> Okay, enjoy :-)
> 
> 
> -- 
> 
> Regards,
> 
> Kingsley Idehen	
> Founder & CEO
> OpenLink Software
> Company Web: http://www.openlinksw.com
> Personal Weblog: http://www.openlinksw.com/blog/~kidehen
> Twitter/Identi.ca handle: @kidehen
> Google+ Profile: https://plus.google.com/112399767740508618350/about
> LinkedIn Profile: http://www.linkedin.com/in/kidehen
> 
> 
> 
> 
> 

Social Web Architect
http://bblfish.net/
Received on Friday, 17 August 2012 19:42:49 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:54:34 UTC