Access Policies via Models
| Title (Goal) | Support Fedora 3-style object classes (content models) - Access Policies via Models |
|---|---|
| Primary Actor | Repository architect & implementer |
| Scope | Data architecture and access |
| Level | High |
| Story (A paragraph or two describing what happens) | As a repository manager,
|
Examples
- Given the myns:image object, I want to create some access policies that allow only users in imaging group to view and update that object.
- If a user adds the mymix:published_web mixin, access to that object, some of its properties, and the web_thumbnail, web_small and web_large datastreams is granted to web users.
- If a user removes the mymix:published_web mixin, access to the object, all its properties and children is revoked for all web users.
Content Model API
| Title (Goal) | Support Fedora 3-style object classes (content models) - Content Model API |
|---|---|
| Primary Actor | Repository architect & implementer |
| Scope | Data architecture and access |
| Level | High |
| Story (A paragraph or two describing what happens) |
Object Services
| Title (Goal) | Support Fedora 3-style object classes (content models) - Object Services |
|---|---|
| Primary Actor | Repository architect & implementer |
| Scope | Data architecture and access |
| Level | High |
| Story (A paragraph or two describing what happens) |
|
Examples
- Given the myns:image node above, I want to run a method (sequencer?) that creates/updates a thumbnail datastream under it every time the master datastream is updated.
- The myns:image type constraints assures that master is always present so if a new myns:image is created, a master child is expected to run the method on.
- Some users should be able to attach a pre-defined mymix:published_web mixin to the same object; when that happens, a sequencer is there waiting to create aweb_thumbnail, a web_small and web_large datastreams as children of the object.
- Conversely, if the user removes mymix:published_web, the web_thumbnail,web_small and web_largedatastreams are destroyed.
Challenges
- How do we handle the creation process so that the object does not go through validation before all mandatory children are ingested?
Issues / limitations
- A mixin can define a mandatory type, but the mixin itself is not mandatory. If some editor removes the mixin, that would break the thumbnail method. In order to prevent that, access policies can be defined for who can remove or add a certain mixin; but for basic functionality not meant to be ever removed, a primary type would solve the problem more easily and elegantly.
- Stefano Cossu: tests should be made with transactions for Challenge #1 when https://www.pivotaltracker.com/s/projects/684825/stories/64058980 is fixed. If I am able to create a node with a primary type or mix-in that defines a mandatory child , and that child as well within a transaction, and the validation is performed ONLY after the transaction is committed, this would solve the issue.
Structural Validation
| Title (Goal) | Support Fedora 3-style object classes (content models) - Structural Validation |
|---|---|
| Primary Actor | Repository architect & implementer |
| Scope | Data architecture and access |
| Level | High |
| Story (A paragraph or two describing what happens) | As a repository manager,
|
Examples
- I have a myns:image asset type that is auto-assigned to assets ingested by Imaging department.
- myns:image has mandatory properties and/or children such as a master datastream, of type nt:file or a subtype thereof.
- myns:image assets can only have children of nt:file type. Ideally, that nt:file should be within a range of defined MIME types (not a critical feature for now)
- I need a validation mechanism that throws an error if an user adds or updates a child or property that doesn't conform to that definition.
Issues / limitations
- The default primary type, nt:folder, allows all Fedora nodes to have children of any type, with any name, in any number. There is no way to restrict that with Fedora's current tools.
- The auto-assigned mixin type, fedora:resource, allows nodes to have properties of any type, with any name, in any number. Ditto as above.
- If a mix-in is removed that defines some properties and/or child nodes, currently these properties/child nodes are not removed. It is not easy to find which properties/child nodes were introduced by a content model, in order to "cleanly" remove it.
- Bad solution: mirror the content model schema in the client systems that are adding/removing content models so they know which properties/children can be removed along with the content model.
- Better solution: expose content model schema via REST API methods (e.g. provide more details in /rest/fcr:nodetypes)
- Another solution: provide a REST API method that automatically removes all properties/children before removing the content model (in one transaction, so no mandatory constraints are violated).
Use case: AIC type hierarchy
Structural Validation - Properties
| Title (Goal) | Support Fedora 3-style object classes (content models) - Structural Validation - Properties |
|---|---|
| Primary Actor | Repository architect & implementer |
| Scope | Data architecture and access |
| Level | High |
| Story (A paragraph or two describing what happens) | As a repository manager,
|
Example
- Given the myns:image object, I want to make it able to have any number of metadata children. Children should be of type myns:meta or a subtype thereof, and their name should start with meta_ (e.g. meta_exif, meta_geo, etc.)
Limitations
- There is no way, even in CND, to achieve this.
3 Comments
-
Thanks for contributing this.
For clarity, let me try to restate your three use cases.
- Use case 1
- As a repository manager,
- I will be able to associate "content models" to objects via an API
- I will be able to associate services with "content models"
- Example services include the generation of image derivatives, and the serving of images
- I will be able to disassociate objects from "content models" via an API
- In so doing, services associated with those "content models" are no longer available on those objects
- As a repository user,
- I will be able to access images via services that are associated with defined "content models"
- As a repository manager,
- Use case 2
- As a repository manager,
- I can define "content models" that ensure the presence of defined datastreams
- A defined datastream has a defined name and a defined mime-type
- I can define "content models" that ensure the presence of defined datastreams
- As a repository manager,
- Use case 3
- As a repository manager,
- I can associate access policies to "content model" parts
- ?? What do you have in mind with "Enforce other relationships" ??
- I will be able to associate objects with a single content model only
- I will be able to define relationships between objects
- As a repository manager,
- Use case 1
-
Thanks for putting this in better Fedorese (and better English).
Use case 3.1.b: I meant exactly what you described in points c and d. Basically use case 2 and 3 should resemble the Enhanced Content Model validation in F3 (at least from what I have read about it, since I never actually implemented it in my tests).
I integrated your corrections into my statement.
-
I see that most of these goals can be accomplished by leveraging JCR node types combined with other ModeShape/Fedora features such as access polices and sequencing.
Although, as of Fedora 4.0.0 alpha 3 only mix-in types are supported through rdf:type assignments; it would be nice to be able to set up primary types as well (see discussion: https://groups.google.com/forum/#!topic/fedora-tech/WuY3fqu_JeE ).
As a repository manager,