Re: [foaf-protocols] Fediz IDP proposed for incubation at Apache

On Tue, Nov 29, 2011 at 17:38, Henry Story <henry.story@bblfish.net> wrote:
> Daniel,
>
>  I'd suggest they consider WebID very early in their architecture process. You may have difficulty getting them to think that is important, but the likelihood that WebID brings up some issues that they had not thought about, and opens avenues  they had not considered is great.
>

>From what I gather,  Fediz is an already deployed project they're
trying to bring in to the incubator. I understand it would have been
better if they were aware of WebID from the start!

> Also if you communicate with them please point them to the official spec, not to the wiki
>
>   http://www.w3.org/2005/Incubator/webid/spec/
>
> or the Twitter URL
>
>   http://webid.info/spec
>

Thanks, an oversight on my behalf... Though the Wiki provides some
additional pointers, that should of course have been a secondary link!

> I am working with Apache, but I am finding it difficult being everywhere at once, and getting involved in one more project is going to be difficult.
> If they are doing this in Java/Scala there is up-to-date code in the
>
>  https://github.com/bblfish/clerezza/
>

Since it's using Apache CFX, I expect it to be Java, or at least JVM based.

> and also there is Scala code that I am working on with more determination in
>
>  https://dvcs.w3.org/hg/read-write-web/
>
> the netty component there also solves a lot of further issues.
>
>        Henry
>
> On 29 Nov 2011, at 03:18, Daniël Bos (远洋) wrote:
>
>> While browsing the Apache incubator mailing list, I came across a
>> proposal for incubation of Fediz [1]. The proposal to the mailing list
>> can be found here [2]. I've added Jean-Baptiste Onofré, who made the
>> proposal to the incubator list, to the discussion. For their
>> convenience, I've added a link [3] and a short description [4] of the
>> WebID protocol to the bottom of this email.
>>
>> From their website:
>>
>> "The idea of WS-Federation for Web SSO is to externalize the
>> authentication process to a centralized authentication server (called
>> Identity Provider (IDP)) which can support any kind of authentication
>> mechanism. The IDP issues a security token like SAML which contains
>> the authenticated entity as well as role information and/or other
>> claim data of a user like name, email, others which is sent to the
>> application (called Relying Party (RP))."
>>
>> It sounds like it would be a good match for them to incorporate WebID
>> as (one of) the authentication mechanisms. They are currently looking
>> for more mentors to start incubation. If there are Apache members on
>> this list who want to help this project move along, I'd encourage them
>> to check out the proposal.
>>
>> I will continue to track this project and check out their source code
>> once it is published for opportunities to incorporate WebID. If the
>> project is accepted for incubation, and mailing lists are created, I
>> will also pitch WebID there.
>>
>> [1] http://wiki.apache.org/incubator/FedizProposal
>> [2] http://mail-archives.apache.org/mod_mbox/incubator-general/201111.mbox/%3C4EAFBA3A.9020802@nanthrax.net%3E
>> [3] http://www.w3.org/wiki/WebID
>> [4] "WebID is an authentication protocol that uses the SSL/TLS layer
>> for user identification by tying the client to a profile document on
>> the web through placing a URI in the Subject Alternative Name field in
>> an X509 certificate. This is the first step to a fully standard-based
>> browser authentication experience. Of course it is not limited to
>> browser based authentication: peer to peer server authentication will
>> work just as well."
>>
>> --
>> 远洋 / Daniël Bos
>> _______________________________________________
>> foaf-protocols mailing list
>> foaf-protocols@lists.foaf-project.org
>> http://lists.foaf-project.org/mailman/listinfo/foaf-protocols
>
> Social Web Architect
> http://bblfish.net/
>
>



-- 
远洋 / Daniël Bos

Received on Tuesday, 29 November 2011 10:43:02 UTC