Wiki source code of Welcome to the Web ID XWiki

Version 53.1 by Henry Story on 2010/05/28 13:11

version	line-number	content
16.1	1	== About WedId support ==
	2
49.1	3	This is a playground for [[FOAF+SSL>>http://esw.w3.org/topic/foaf+ssl]] integration in XWiki.
48.1	4
53.1	5
	6	{{html}}
	7	<object width="640" height="385"><param name="movie" value="http://www.youtube.com/v/8iZPJBpI2Po&hl=en_US&fs=1&"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/8iZPJBpI2Po&hl=en_US&fs=1&" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="640" height="385"></embed></object>
	8	{{/html}}
	9
49.1	10	With foaf+ssl, you no longer need to type a username or remember a password. Public Key Cryptography takes care of that. As Dan Kaminsky pointed out in a few of his speeches, the major security problem on the web are passwords. 60% of security breaches can be attributed to this technology. Why is it still here? Because the way X.509 was used did not work. By tying X.509 to the semantic web, we solve the major problem on the client side. On the server side DNSsec will solve the other half of the problem. See [[the recent thread on the foaf-protocols list>>http://foaf.markmail.org/thread/6mavqww3d6oii4dt#query:+page:1+mid:5t57suylbzvk44ub+state:results]].
	11
9.1	12	Currently you can get yourself an account on here, the normal way, then create yourself a [[WebID>>http://esw.w3.org/topic/WebID]].
2.1	13
38.1	14	=== HOWTO ===
21.1	15
	16	* Create an account here with a password
52.2	17	* On your profile page create a WebId: just click the "create certificate request" button and a certificate will be added to your browser (likely need to restart your browser)
48.1	18	* You can then login to a [[growing number of sites>>http://esw.w3.org/topic/foaf%2Bssl/RelyingParties]] with one click. No more username or password to type!
21.1	19
50.1	20	The idea is that you only need one account (though you can have a few) to login to all other sites. Ideally this account would be on a server you control.
	21
41.1	22	=== Features ===
24.1	23
	24	* When you get yourself a WebId you automatically get an OpenId too that uses foaf+ssl authentication via http://openid4.me/ . The openid is a bit ugly for the moment (it is too long). Making it shorter is on the todo list below.
	25
44.1	26	=== Todo ===
21.1	27
44.1	28	* of course the certificates created here should be created behind https in order to avoid a man in the middle attack in the certificate generation process
	29	(given that WebIds are not being used for anything much this is not an urgent issue - but of course people will point this out)
24.1	30	* Looking for ways to simplify IE cert creation!!! Please let us know of any cool tricks you may know of.
21.1	31	* Public profiles should have beautiful URLs, and short ones too ( something like http://webid.myxwiki.org/id/bblfish )
52.1	32	* The public profiles should also return minimal html as as can be had by adding ?xpage=plain at the user profile
52.2	33	http://webid.myxwiki.org/xwiki/bin/view/XWiki/Natanael_L?xpage=plain
52.1	34	This cuts the page size down by 4.
22.1	35	* Add the ability to login to this site using WebIDs create elsewhere (or from this site). We will do this in two steps
23.1	36	*1. Use an external [[FOAF+SSL>>http://esw.w3.org/topic/foaf+ssl]] identity provider, such as https://foafssl.org/srv/idp
	37	*1. Build a component that can be added to XWiki or Restlets so as to not require an external IDP (this will require support for https though)
21.1	38	* Add Access Controls to parts of this wiki for members of given foaf:Groups
	39	* [enter your idea]
	40
38.1	41	=== Web site Issues ===
28.1	42
38.1	43	XWiki deploys profiles in [[RDFa>>http://www.w3.org/TR/xhtml-rdfa-primer/]], which is still very new. A lot of the foaf+ssl community is just moving over to supporting that, so
33.1	44	a number of sites will seem broken when attaching from here.
	45
	46	* The Cheese Lover's club is not functioning
46.1	47	* Ontowiki's login feedback is way too minimal for the moment
28.1	48
38.1	49	=== Browser issues ===
15.1	50
46.1	51	* None of the browsers are good at showing the user which cert he is using. But developments are on their way:
	52	** Chrome has an active [[issue 29784>>http://bit.ly/azCXTU]]
	53	** Firefox has started thinking about it but [[this could be sped up with a good demo>>http://bit.ly/cQ5f48]]
13.1	54	* Firefox and Opera work very well.
30.1	55	* for Chrome on OSX try the [[latest development snapshots>>http://build.chromium.org/buildbot/snapshots/]] . ( [[issue 37765>>http://code.google.com/p/chromium/issues/detail?id=37765]] was fixed 16 March )
19.1	56	* Safari on OSX has the same issue as Chrome above, but it is very difficult to get any response from their developers through their bug database. If you know how to bring their attention please do.
13.1	57
11.1	58	Please feel free to get an account and edit this wiki. Send feedback to the [[foaf-protocols mailing list>>http://lists.foaf-project.org/mailman/listinfo/foaf-protocols]]
10.1	59
38.1	60	=== Code ===
37.1	61
15.1	62	The code to add to XWiki to enable this is available here http://github.com/bblfish/keygenapp in the xwiki subdirectory
	63
16.1	64	== More about XWiki itself ==
	65
3.1	66	This is a wiki, ie an easy-to-edit website that will help you work better together. This Wiki is made of //pages// sorted by //spaces//. You're currently in the Main space, looking at its home page (WebHome).
1.1	67
	68	{{velocity}}
	69	#if($hasEdit)You can use the [[Sandbox space>>Sandbox.WebHome]] to try out your wiki's features.#end
	70	{{/velocity}}
	71
	72	{{include document="Main.Dashboard"/}}