entity.access.public - Githubissues

NCEAS / metadig-checks

MetaDIG suites and checks for data and metadata improvement and guidance.

Apache License 2.0

9 stars 9 forks source link

entity.access.public #51

Open gothub opened 5 years ago

gothub commented 5 years ago

Description

Check if the data accessible to anyone. Check both metadata identifier and data entity identifier system metadata.

Priority

FAIR: Optional

Issues

should access be checked for all data entities described in a metadata document? There may be hundreds, and sysmeta must be fetched for each one.

Procedure

select the metadata identifiers and entity identifiers described in the metadata
fetch the system metadata for each one and check that the public subject has read access

tedhabermann commented 4 years ago

This is similar to the resource.access.anonymous check. Are they the same?

mbjones commented 4 years ago

Anonymous access means that a resource is accessed without logging the identity of the person accessing it. And so no, it is not the same. A dataset may be publicly accessible but the provider still logs the identity of the accessor (e.g., its IP address).

gothub commented 4 years ago

The most desirable way to implement this check is to check the access of all or a subset of the entities described by a metadata document. In the current metadig-engine implementation this would require sending a DataONE service call (either getSysmetadata or query (solr)) for each entity.

This check will be added to the suite when a method for doing this efficiently and not putting a large load on DataONE services is possible.