Time/Place
This meeting is a hybrid teleconference and IRC chat. Anyone is welcome to join...here's the info:
- Time: 11:00am Eastern Daylight Time US (UTC-4)
- U.S.A/Canada toll free: 866-740-1260, participant code: 2257295
- International toll free: http://www.readytalk.com/intl
- Use the above link and input 2257295 and the country you are calling from to get your country's toll-free dial-in number
- Once on the call, enter participant code 2257295
- IRC:
- Join the #duraspace-ff chat room via Freenode Web IRC (enter a unique nick)
- Or point your IRC client to #duraspace-ff on irc.freenode.net
Attendees
Andrew Woods- David Wilcox
- Unknown User (escowles@ucsd.edu)
- Greg Jansen
- Jon Roby
- Yinlin Chen
- Don Moses
- Stefano Cossu
- (others who plan to attend, feel free to add your names in advance)
Agenda
- Ongoing Hydra access control metadata discussions, focusing on WebAccessControl proposal from W3C.
Minutes
Hydra Access Controls
- Justin Coyne mostly done implementing WAC proposal
- Should be working in Hydra
- Resources reference access control nodes
- Should we enforce in Fedora?
- Role-based access control?
- New module?
- Might solve problem of not being able to use fine-grained access control in file system federation
- Most people in Hydra community are interested in this standard
- Modes as predicates
- Limited set of HTTP modes
- Use cases for other modes?
- Hydra devs getting together in first week of November to implement
- Working on Hydra modelling more broadly
- How to control who can set ACLs?
- Some questions about implementations
- Broad ability to create ACLs is powerful, needs to be constrained
- Could be done at the application layer, or maybe with XACML
- Does Fedora need an API for this?
- Maybe no - just use SPARQL-update
- Need an index/cross-reference between ACLs and objects to enforce in Fedora
- Resources would have reciprocal properties linking to ACLs
- Could enforce in this way
- Could maybe work for filesystem federation as well
- Would be more complicated - might need an index
- Resources would have reciprocal properties linking to ACLs
- Greg: replace basic roles with WAC roles
- Enforce in XACML or Java code as they are now
- Can extend roles with XACML
- New roles unsupported by WAC could still be created and enforced at the XACML level
- Great opportunity for interoperability (WAC/LDP)
- Hydra over Marmotta is much easier now that Fedora implements LDP (as does Marmotta)
- Can enforce in Hydra or Fedora or both
- Need to post page on Fedora 4 wiki for broad comments
List ordering (Stefano)
- Tested blank nodes and they work now
- An ordering ontology supported in the repo would be preferred
- Need to establish a community quorum for proceeding
- Schedule special topic call