web-access-control-spec
web-access-control-spec copied to clipboard
solid
Web Access Control (WAC)
I started thinking about the design of an ACL cache, and figured some metadata set on the authorizations, using DC properties could help with that. This proposal helps both with...
For a project, we're currently trying to use an Append-only functionality. In the scenario, everyone has Append access to a file, but no read and write access. For us the...
Hello, If I understand correctly `accessTo` and `default` are closely related: one allows the authorization to the specified resource and the other allows access to the resources and recursively all...
The current Effective ACL Resource Algorithm enables the following which would not be the intent of the users involved: teamx has default read/write/control to a container which has a 5...
The Access Control Panel has been putting together protocol comparisons between WAC, ACP, and various WAC+ solutions. (WAC+ are potential ways of extending WAC in a backward compatible way). The...
I have opened a discussion in the authorization panel space https://github.com/solid/authorization-panel/discussions/258 on the topic "Use WAC ontology for authorizing authentication". This issue here can then be used later to report...
The ACL ontology ( http://www.w3.org/ns/auth/acl ) defines `acl:Read`, `acl:Write`, `acl:Append`, and `acl:Control` access modes. This is a general issue, a study, to document common operations and new access modes (based...
Clients making HTTP requests on behalf of agents (social entities) may need to be given different set of access privileges than the agents. Considerations: * Client is authenticated - protocol...
The consensus in https://github.com/solid/specification/issues/14#issuecomment-683480525 seems to be that at least `Append` on the container `C` is necessary (and `Write` on the resource `R`) when creating `C/R`. However, this is not...
This issue comes in 2 parts: 1) The problem with `:Control` 2) What to replace it by ## The problem with `Control` `acl:Control` is a very different mode to `acl:Read`...