How to change the Sharing settings for a resource?

Do you think commenting on this post and inviting Dontai here is a good idea?

@JPL and @johanbove a Beginner’s tag or any other “signal” would be wonderful. How do we do that? :slight_smile:

The administrators need to create a new category

Yes. I agree to that idea! We can always ask.

Considering a „beginners“ category; It looks like we have mostly techy people interested in contributing to the Solid projects, then we have people focusing on documentation on how to use the existing tools, and we have posts about high level concepts. „Getting started“ as a developer, as a datapod user, writing documentation, setting up a server, would all go into the beginners category. So that would be basically everything currently in this forum, right?

1 Like

I’d classify a beginner as someone who has read something in the press or another projects and winds up here. They might be highly technical or not at all. They want to know about the concepts and ideas and how to interact with what’s there so far (ie the Databrowser). They want to know timelines, next steps, what they can do to help, and crucially where to look for more information. So everything at a high level. In your example of setting up a server, a graphical stepthrough would belong in Beginners, whereas more detailed information about interfaces, frameworks, APIs, developer tools etc would go into Developer.

Ultimately there are no hard and fast rules and quite a lot of playing by ear. If everything landed up in beginners it would make sense to split it into different categories (or add sub categories) to keep it useful to genuine beginners / new arrivals. It’s easy for Mods to move threads and posts from one category to another if they don’t really fit.

3 Likes

That sounds like a very reasonable and smart classification. You know your stuff @JPL. Perhaps your post should be moved to a new thread into the “solid feedback” category?

1 Like

This is the beginner I imagine too. And it feels right to have content for them in a separate thread or category. The different “shades” of beginners @johanbove listed are also important for the categorization.
If you don’t mind we can move this interesting discussion to: Promote this forum to newcomers more intensively where I shared some thoughts about the content experiences I envision (the ones I would be happy to see as a non-tech person) throughout my first Solid encounter.

As a Beginner/not-Developer that wants to learn to use the currently available tools, I find this post and the resulting thread to be extremely helpful.

2 Likes

How do you grant a specific webId or web-app (Origin header / domain name) access to your resource? I can see that you can drag the globe to a sharing-setting, but what about a WebID or Origin value?

1 Like

Pinging @megoth here who might be in the know!

1 Like

I’ve been updating the acl files directly.

By going to the .acl file directly in the browser, viewing the source by hovering in the header area and clicking the appropriate icon. click the pencil Icon to edit, add your acl statements granting access, click the check mark to save.

1 Like

Thanks. Though I cannot figure out how to locate the ACL files?

Example: I want to grant access to my inbox https://elfisk.solid.community/inbox/ for the Origin/web.app “elfisk.dk”. Where would the “.acl” file that be located?

1 Like

You’d have to inspect the http Link headers to be sure, but it’s most likely /inbox/.acl

1 Like

Ah :slight_smile: I was trying “inbox.acl” not “inbox/.acl”. Thanks.

1 Like

Can you help me again? I’ve got the ACL for /inbox/.acl:

@prefix : <#>.
@prefix n0: <http://www.w3.org/ns/auth/acl#>.
@prefix inbox: <./>.
@prefix c: </profile/card#>.

:ControlReadWrite
    n0:accessTo inbox:;
    n0:agent c:me, <mailto:jw@elfisk.dk>;
    n0:origin <http://elfisk.dk>;
    n0:defaultForNew inbox:;
    n0:mode n0:Control, n0:Read, n0:Write;
    a n0:Authorization.
:Read
    n0:accessTo inbox:;
    n0:defaultForNew inbox:;
    n0:mode n0:Read;
    a n0:Authorization.
:ReadWrite
    n0:accessTo inbox:;
    n0:defaultForNew inbox:;
    n0:mode n0:Read, n0:Write;
    a n0:Authorization.

I can see the agent “c:me” (my WebID) has Control, Read and Write access.

Now I want to grant access to the origin http://elfisk.dk which is the Origin header I can see in Fiddler. As you can see above I’ve tried n0:origin <http://elfisk.dk> - but without luck - the server returns “Not authorized”.

I have also tried n0:trustedOrigin <http://elfisk.dk> without luck.

The server has accepted my change: if I reload the .acl page I can se my changes.

If I try the exact same request, through Fiddler, without the “Origin” header, it returns 200-OK with the inbox data.

I’m trying to go through https://www.w3.org/wiki/WebAccessControl to understand what is going on. But apparently missing something.

Do you know what I am supposed to do?

1 Like

@JornWildt sorry for late response, I’ve been on away for a couple of days. I’m not quite into the whole access/resource sharing with apps yet, so I’ll refer to @timbl and @RubenVerborgh in hopes they might have time to answer your questions.

Just in case, have you looked at the Solid Specificatino and the parts on Authorization and Access Control?

1 Like

Yes, thanks, I’ve tried to understand both - it ends at https://github.com/solid/web-access-control-spec#referring-to-origins-ie-web-apps with “A specific ACL can be be made to allow a given app to access a given file or folder of files” … without further details about how its done plus some future ideas.

1 Like

.acl files.
How do you go directly to the file in the databrowser ?

1 Like

Sharing for file solidlinks.txt
Error reading ACL. status Can’t get headers to find ACL for <https://>: Failed to load <https://> Fetcher: fetch failed: TypeError: https:// is not a valid URL. status: 999: ( No ACL pointer https:// Can’t get headers to find ACL for <https://>: Failed to load <https://> Fetcher: fetch failed: TypeError: https:// is not a valid URL. status: 999)undefined
What I get when trying to change permissions as described in this post.

1 Like