...
- Updates
- Jared
- Yesterday
- PR review
- Squashing commits
- Today
- Refactoring
- Yesterday
- Mohamed
- Yesterday
- Minor changes to authorization interfaces
- PR review
- Today
- Implementing authorization handler
- Yesterday
- Peter
- Yesterday
- PR review
- Discussion
- Today
- Refactoring
- Working on other things that come up in discussion
- Yesterday
- Jared
- Much of the week has been spent getting everyone on the same page and developing a shared understanding on the implementation
- Things that need to happen:
- Refactoring
- Initial tie-in point:https://github.com/fcrepo4/fcrepo4/blob/master/fcrepo-auth-common/src/main/java/org/fcrepo/auth/common/ServletContainerAuthenticationProvider.java
- Entry point for all the work we’re doing
- Should use this class rather than rewriting it
- Refactor line 50 and 55
- Review implementation of principal providers
- https://github.com/fcrepo4/fcrepo4/blob/master/fcrepo-auth-common/src/main/java/org/fcrepo/auth/common/FedoraUserSecurityContext.java
- Probably can only use this class for inspiration
- Review and recommend refactoring if necessary:
- https://github.com/fcrepo4/fcrepo-module-auth-rbacl/blob/master/fcrepo-auth-roles-common/src/main/java/org/fcrepo/auth/roles/common/AbstractRolesAuthorizationDelegate.java
- https://github.com/fcrepo4/fcrepo-module-auth-rbacl/blob/master/fcrepo-auth-roles-common/src/main/java/org/fcrepo/auth/roles/common/AccessRolesProvider.java
- Initial tie-in point:https://github.com/fcrepo4/fcrepo4/blob/master/fcrepo-auth-common/src/main/java/org/fcrepo/auth/common/ServletContainerAuthenticationProvider.java
- Other tasks
- fcrepo-webapp-plus
- Need to build in a profile for WebAC configuration
- Integration tests
- Leverage existing tests where possible
- Put together a suite of integration tests in advance of an implementation
- Documentation
- Establish 4 scenarios that involve protecting resources with WebAC
- Document SPARQL-Update recipes for addressing these scenarios
- fcrepo-webapp-plus
- Refactoring
08/31
- Peter
- Friday
- Updated ServletContainerAutheticationProvider class
- Change concept of “everyone” to “foam:agent"
- Some changes to role based authentication and XACML modules will be required as they expect “everyone"
- Investigated integration testing suite
- See what we can reuse for WebAC testing
- Updated ServletContainerAutheticationProvider class
- Friday
- Mohamed
- Friday
- Created FedoraWebACUserSecurityContext class
- Today
- Update WebAppPlus
- Moving WebAC user security context out of main codebase
- Friday
- Jared
- Friday
- AbstractRolesAuthorizationDelegate
- We could extend this class, or implement FedoraAuthorizationDelegate directly
- Extending this class is probably the best way to go
- We could extend this class, or implement FedoraAuthorizationDelegate directly
- AccessRolesProvider
- Does not use ldp:contains to traverse the repository, so not useful for WebAC implementation
- Added scenarios to WebAC documentation
- AbstractRolesAuthorizationDelegate
- Today
- Interface work with AccessRolesProvider
- Creating another scenario for the documentation
- Friday
09/01
09/02
09/03
- Fedora Tech Meeting
...