Open bblfish opened 3 years ago
bblfish
commented
3 years ago The requirement for this is
bblfish
commented
3 years ago Building the AuthZ layer one immediately comes to to think about inheritance of Access Control Rules. This happens as follows just by thinking about building a test suite:
WAC has support for a basic form of default inheritance, but default reasoning is awakward on the semantic web, and so proposed using an :imports relation as per solid authz issue 210: add :imports relation. I had something similar in rww-play 6 years ago - though I called it :includes at the time. I find that makes it much easier to think about access control, so I implemented this in Commit 7771d5871dd9c10f535200730f4290454c0d3032.
In order to implement Access Control flexibly I added a basic system of Free Monad Scripts defined in SolidCmd.scala. This allows one to for example write a script that fetches a graph and the transitive closure of its :imports related graphs.
One advantage is that it makes it possible to test the script with a mock WWW and simple interpretation as in TestLDPCmd.scala. One can then interpret exactly the same script using Actors. Each command comes with a URL allowing it to gets Routed to its own Actor and interpreted by that actor: a filesystem actor will read data from the FileSystem and Web Proxy actor read from the relevant remote resource, or from its cache, a DB Actor ... (see the BasicContainer for example). This was done in RWW-Play too, but here we integrate this clearly with a pure streaming web server view via the Wait command to allow us to work with Futures when transforming an RDF Stream into a Graph for example.
The result of running the Free Monad, is a Cofree Comonad, which interestingly enough is the structure of a RDF Dataset!
Add Basic WAC access control