Time/Place
This meeting is a hybrid teleconference and IRC chat. Anyone is welcome to join...here's the info:
- Time: 11:00am Eastern Daylight Time US (UTC-4)
- U.S.A/Canada toll free: 866-740-1260, participant code: 2257295
- International toll free: http://www.readytalk.com/intl
- Use the above link and input 2257295 and the country you are calling from to get your country's toll-free dial-in number
- Once on the call, enter participant code 2257295
- IRC:
- Join the #duraspace-ff chat room via Freenode Web IRC (enter a unique nick)
- Or point your IRC client to #duraspace-ff on irc.freenode.net
Attendees
- Michael Durbin
- Kevin S. Clarke
- Unknown User (escowles@ucsd.edu)
- Eric James
- David Wilcox
- Andrew Woods
- Greg Jansen
- Unknown User (bbpennel)
- Mike Daines
- Ed Fugikawa
- Scott Prater
- Longshou Situ
- Nikhil Trivedi
Agenda
- XACML design review
- IIIF and F4 - interest?
- Cancel next week's Committer call?
- ...
Minutes
Greg Jansen started with an overview of the XACML design. Stubs are complete and other developers can work on implementing individual policies and finder modules.
Unknown User (bbpennel) walked us through the CND.
- Michael Durbin: Is there a reason not to make them be datastreams? (image mixin's done seem appropriate)
- Unknown User (escowles@ucsd.edu): Can locks and versioning apply? (yes, and that's probably good.)
- Greg Jansen: If they're not datastreams, can we still use the stuff we built for datastreams? Wouldn't it be simpler if they were datastreams?
- Andrew Woods is there a performance consideration?
- Decided to go with the current implementation, and change to a datastream implementation if there is an issue.
- Eric James pointed out that the inclusion of the XACML should allow for references to allow reuse.
How should these CND changes be applied?
- Programatically when the jar file is included?
- Configured as part of a custom-built jar.
Greg Jansen walked us through the fcrepo-module-auth-xacml project. (org.fcrepo.auth.xaclml.XACMLAuthorizationDelegate)
Scott Prater asked about support for an external XACML PDP. Greg Jansen said it might be best to write another AuthorizationDelegate, but might be able to reuse Attribute Finders.
Scott Prater suggested a rename to imply that it's a "local" PDP. Greg Jansen and Andrew Woods suggested documentation and description might be sufficient to make the scope clear.
Andrew Woods suggested we might assign outstanding tickets.
Actions