I’m writing an application for Solid in Python. Specifically, this is a FUSE implementation for accessing resources in Solid Pods. The reason for not using JS is obvious: for system programming (e.g. FUSE), JS is not a good choice and lacks a lot of libraries.
I do manage to implement something (repo here), but there is an issue for using it for wider contexts: the library I depend on only supports NSS.
After further investigation, it seems this is because of the lack of implementation of Solid-OIDC in Python (discussion).
I also looked at the list of libraries from solid project website, particularly the part about libraries in languages other than JS. For Python, they are all discussed in the reference above.
So, does anyone know a Python library that does the job?
How about the case in other languages that are normally considered suitable for system programming(e.g. C/C++, Golang, Rust, etc)?
And related, what was people’e experience in implementing Solid-OIDC? I mean, is it hard or complex (time-consuming) to implement?
I’m totally naive to this topic, and merely know what OIDC is and its general flow. I also have roughly no idea what is the difference between normal OIDC and Solid-OIDC.
(I did try to read the Solid-OIDC Primer, in the hope to understand how to improve the implementation; but I only got confused by almost everything.)
Good to see the author alive
I did have a look of solid-oidc-client, as you have linked it in the discussion in that PR. However, as you mentioned in the README, the refreshing of expired tokens is a missing feature. That poses problems for my use case, as a filesystem is expected to run somewhat forever…
And if I understand correctly, this library requires the user to manually log-in from browser? I see this is a result of using OIDC. But from that perspective, maybe client credentials is a better choice…?
Hi, I’ve always been alive
Just not having the time (and sometimes motivation) to finish all my projects.
Yes, it does not refresh tokens, that would still have to be implemented. I don’t know what the expiration time is for the different servers (if it’s minutes, hours or days), so it indeed could be an issue for practical usage. You would probably also need to use a different storage rather than MemStore, so that the keys are not lost on a restart.
Afaik, Solid-OIDC requires an interactive login. At least I’ve interpreted step 6 of the Primer like this.
I think it would be fine to let the user once open an URL to login, they will need to authenticate in one or another way. With client credentials, I think it would be easier to get started as the library is more robust (with token refreshing iirc), but the way you obtain the credentials depends on the identification provider, which is likely a worse UX.