Michiel de Jong
Michiel de Jong
idea of bearer token generator script superseded by @kjetilk's new plan as detailed there ^ leaving this issue open because even once #36 is completed, we will still want to...
This is the request done in https://github.com/solid/solid-crud-tests/blob/main/test/surface/create-non-container.test.ts#L41 when you run https://github.com/solid/solid-crud-tests/blob/main/run-against-trinpod.sh
Here is failing curl request for POST to the root: ```sh curl -v -d 'Hello World' -H 'Content-Type: text/plain' -H 'authorization: DPoP eyJhbGciOiJSUzI1NiIsImtpZCI6IkpxS29zX2J0SHBnIn0.eyJpc3MiOiJodHRwczovL3NvbGlkY29tbXVuaXR5Lm5ldCIsImF1ZCI6InNvbGlkIiwic3ViIjoiaHR0cHM6Ly9zb2xpZC1jcnVkLXRlc3RzLWV4YW1wbGUtMS5zb2xpZGNvbW11bml0eS5uZXQvcHJvZmlsZS9jYXJkI21lIiwiZXhwIjoxNjIzNDIxNDkwLCJpYXQiOjE2MjIyMTE4OTAsImp0aSI6IjdlOTZhNmVmZDVmNDMzNDUiLCJjbmYiOnsiamt0IjoiM0JpWTd4VHZjVWtxaWlnM2YzUFlENm01OEtUZHB5OU5TYjVFc2VuMm1VOCJ9LCJjbGllbnRfaWQiOiJlZjk2YmZiOWEyNmRkZWM4YmMyZGEyMGJhNjFlMjgyOSIsIndlYmlkIjoiaHR0cHM6Ly9zb2xpZC1jcnVkLXRlc3RzLWV4YW1wbGUtMS5zb2xpZGNvbW11bml0eS5uZXQvcHJvZmlsZS9jYXJkI21lIn0.di8h-SfF9CY4nVsbB7hq7NEuc375r8JwI3apBLUmaSnM0iB1wnIwM-Nb-18E49cv9KaNDcotcJXh5JQsW96CQ4kx7OGwNAsCuI9T2dqqIUcSiRyZ8QLqs5nG1tKU4QXl9rNPuqDy--vHk2roZRGU2Hd2s9_GsNyDkCrjKx9r1zIfUIX6918mI5tTHiaCdmtUsIM8Wlk_L9e0ROo8ft0wgpcTW_KmbHtvGg5F6Ks3Qbnso7xkckV6Ddjms2395JwdPcWXgldwuP3wjZ70J_MVD4XeMe3_PHKT4N8CcdiajKc5pAyHPQQOYD55H_MY_K2-UzBab760FPV2fussn-A0yw' -H 'dpop: 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.eyJodHUiOiJodHRwczovL3NvbGlkLXRlc3RzLnRyaW5wb2QudXMvIiwiaHRtIjoiUE9TVCIsImp0aSI6IjQ5MGVhNTQ3LWQ4NzEtNDVhMS1iZjcxLTEwYjQwN2Q5NTMxNSIsImlhdCI6MTYyMjIxMTg5MCwiZXhwIjoxNjIyMjE1NDkwfQ.Zr_Ga_MjcFENZfG47qz66JCCVDdC8ezFBKU_5mCjndOkrBrWZHy6Nshcq0aXHDL9_yoE6l962FQCh63W0GbQQFsEQzedoaiAswMwXREXDK9CzAQICBE2pH9mlxKoOYvaQoXNqTaDbAF92qUVW73x5xB3ioif6CI_sF_lxSY9KY4-WFYnFrVWwXGctsRDQH5CVt_Nwx8SCvRlE_P67EtzHMd5Ept3OiL6QKHJK4Nf2b1D9jMYKEIWz07FzxuQMIgEimwIYZbUbOwBMHVRGFyD73IIeN6GmEv-8X0rmMcCD-bT1zmgM8V9uV--bjI_H2q9c0CYqNk3UWOomp1zCTM0BQ' https://solid-tests.trinpod.us/ ```
The flow that starts at the resource server could be called a "RS-first" flow, as opposed to a "client-first" flow. In the test suite we have been calling it the...
So we can build on https://github.com/pondersource/surf-token-based-access - in particular I designed the client-facing scope info structure with the `protocols` field matching ours, so that we can reuse that. So the...
I think that basically completes the framing! Will try to discuss it with the OAuth experts at OSW this week.
This issue has been open for almost two years now.
Good stuff! Apart from criteria about how often a given spec was implemented, for the Solid Project we may want to add requirements about how many competing specs aim to...
Nice! Looking forward to seeing this merged
should also test the Updates-Via header