michielbdejong
commented
5 years ago Also, I'm wondering how multi-resource requests using globbing or SPARQL should work in relation to WAC and also to error/result reporting.
I'm guessing for https://github.com/solid/solid-spec/blob/master/api-rest.md#globbing-inlining-on-get such queries could always return a 200 and then in the body only include resources that matched both the query and the WAC constraints.
For https://github.com/solid/solid-spec/blob/master/api-rest.md#alternative-using-sparql I imagine it might become even trickier to report a multi-resource write operation that partially failed. Maybe this is is also something that could be addressed in the (planned) cross-server API tests?
RubenVerborgh
Hi!
https://github.com/solid/solid-architecture/blob/master/server/request-flow.md#step-2-parse-the-request-to-the-personal-data-store mentions required permissions are Read, Write, Append, and/or Delete, based on method, and in case of PATCH, body. I'm guessing that means GET, HEAD need Read, OPTIONS needs nothing (?), POST and PUT need Append+Write, PATCH needs Append or Append+Write, and DELETE needs Delete.
But https://github.com/solid/web-access-control-spec#modes-of-access mentions Read, Write, Append, Control.
How do these relate? I'm guessing Delete translates to Write? And shouldn't there also be http requests for which the required permissions are
acl:Control? Also, when PUT or POST cause the creation of a new resource, WAC describes that as Append, and not Append+Write.Is there a document (or should we start one) specifying in more detail how the required permissons (in terms of exact WAC modes) for a http request can be determined?