...
- David Wilcox
- Andrew Woods
- Nick Ruest
- Joshua Westgard
- Stefano Cossu
- Ben WallbergPeter Eichman
- Karen Estlund
- Unknown User (acoburn)
- Jared Whiklo
...
- https://www.w3.org/wiki/WebAccessControl
- https://github.com/duraspace/pcdm/wiki#webacl
- Authorization Delegates
- http://www.w3.org/ns/auth/acl
Minutes
Facilitate Stakeholder Verification
- Enable WebAC feature in fcrepo4-vagrant
- Script the creation of resources and ACLs that correspond to stakeholder use cases
- Stakeholders should provide additional use cases/scenarios as needed to help round out the verification
Sprint 2 Items to address
- Allow a specific agent to CREATE a resource, but not update it
- Currently, ACL resources are protected like other repository resources. Add special protection for ACL resources
- Implement "agent class" support:
- For agent classes that are found within the repository
- For agent classes that are found external to the repository (stretch, do stakeholders want this?)
- Allow repository admins to turn of "agent class" capability
- Implement "remote ACLs", if stakeholders view it as a priority
- Stretch goal: acl:include
Note: Since the WebAC "specification" does not have provisions for time-based authorization, the proposal is to move logic for policies such as leases or embargoes up into the application layer. Question for stakeholders, Is that reasonable?