node-solid-server icon indicating copy to clipboard operation
node-solid-server copied to clipboard

Published 20 hours ago verified publisher icon nodeSolidServer

DELETE owner should be forbidden

Open bourgeoa opened this issue 4 years ago • 3 comments

https://solidproject.org/TR/protocol#storage

Servers MUST keep track of at least one owner of a storage in an implementation defined way.

Owner is implemented as a triple in root/.meta

  • root/.meta should not be deleted
  • owner defining triple must exist

bourgeoa avatar Jun 28 '21 15:06 bourgeoa

You mean, that triple should be considered write-protected. Yes.

timbl avatar Jun 30 '21 07:06 timbl

Should the whole ~/.meta file be write-protected?

timbl avatar Jun 30 '21 08:06 timbl

Should the whole ~/.meta file be write-protected?

No it may have other usages.

~/.meta must contain an owner triple. In term of REST methods there are 2 different things :

  • /.meta cannot be deleted : DELETE is forbidden
  • it must contain an owner triple : PUT and PATCH must check that : -- the owner triple exist, -- and if possible that the owner is valid

What is a valid owner => with actual specification I suppose it must be a valid webId How can we check that the webId is valid ? -- do nothing. -- expect it is an existing URI with fetch -- check for authorization

bourgeoa avatar Jun 30 '21 20:06 bourgeoa