Wiki source code of Welcome to the Web ID XWiki

Last modified by Sanjay Jangid on 2016/02/26 20:29

Show last authors
1 {{error}}
2 This wiki was the work of Henry Story. It's no longer maintained and the instructions probably don't work anymore.
3
4 Some recent progress on webid:
5 * Specs: https://dvcs.w3.org/hg/WebID/raw-file/tip/spec/index.html
6 * http://webid.info/spec/
7 {{/error}}
8
9 == About WedId support ==
10
11 This is a playground for [[FOAF+SSL>>http://esw.w3.org/topic/foaf+ssl]] integration in XWiki.
12
13 WebId's are so simple to make and to use, that it is difficult to explain. The following screen cast does this better than any HOWTO could:
14
15 {{html}}
16 <object width="640" height="385"><param name="movie" value="http://www.youtube.com/v/8iZPJBpI2Po&hl=en_US&fs=1&"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/8iZPJBpI2Po&hl=en_US&fs=1&" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="640" height="385"></embed></object>
17 {{/html}}
18
19 With foaf+ssl, you no longer need to type a username or remember a password. Public Key Cryptography takes care of that. As Dan Kaminsky pointed out in a few of his speeches, the major security problem on the web are passwords. 60% of security breaches can be attributed to them. Why are they still so ubiquitous? Because the only secure contender, SSL - the protocol that gave us online shopping - and X.509 were too expensive and complex for end users. But this need to be so. By tying X.509 to the semantic web, we solve the major problem of cost, and introduce powerful flexibility. On the server side DNSsec will solve the other half of the problem. See [[the recent thread on the foaf-protocols list>>http://foaf.markmail.org/thread/6mavqww3d6oii4dt#query:+page:1+mid:5t57suylbzvk44ub+state:results]].
20
21 Currently you can get yourself an account on here, the normal way, then create yourself a [[WebID>>http://esw.w3.org/topic/WebID]].
22
23 === HOWTO ===
24
25 * Create an account here with a password
26 * On your profile page create a WebId: just click the "create certificate request" button and a certificate will be added to your browser (likely need to restart your browser)
27 * You can then login to a [[growing number of sites>>http://esw.w3.org/topic/foaf%2Bssl/RelyingParties]] with one click. No more username or password to type!
28
29 The idea is that you only need one account (though you can have a few) to login to all other sites. Ideally this account would be on a server you control.
30
31 === Features ===
32
33 * When you get yourself a WebId you automatically get an OpenId too that uses foaf+ssl authentication via http://openid4.me/ . The openid is a bit ugly for the moment (it is too long). Making it shorter is on the todo list below.
34
35 === Todo ===
36
37 * of course the certificates created here should be created behind https in order to avoid a man in the middle attack in the certificate generation process
38 (given that WebIds are not being used for anything much this is not an urgent issue - but of course people will point this out)
39 * Looking for ways to simplify IE cert creation!!! Please let us know of any cool tricks you may know of.
40 * Public profiles should have beautiful URLs, and short ones too ( something like http://webid.myxwiki.org/id/bblfish )
41 * The public profiles should also return minimal html as as can be had by adding ?xpage=plain at the user profile
42 http://webid.myxwiki.org/xwiki/bin/view/XWiki/Natanael_L?xpage=plain
43 This cuts the page size down by 4.
44 * Add the ability to login to this site using WebIDs create elsewhere (or from this site). We will do this in two steps
45 *1. Use an external [[FOAF+SSL>>http://esw.w3.org/topic/foaf+ssl]] identity provider, such as https://foafssl.org/srv/idp
46 *1. Build a component that can be added to XWiki or Restlets so as to not require an external IDP (this will require support for https though)
47 * Add Access Controls to parts of this wiki for members of given foaf:Groups
48 * [enter your idea]
49
50 === Web site Issues ===
51
52 XWiki deploys profiles in [[RDFa>>http://www.w3.org/TR/xhtml-rdfa-primer/]], which is still very new. A lot of the foaf+ssl community is just moving over to supporting that, so
53 a number of sites will seem broken when attaching from here.
54
55 * The Cheese Lover's club is not functioning
56 * Ontowiki's login feedback is way too minimal for the moment
57
58 === Browser issues ===
59
60 * None of the browsers are good at showing the user which cert he is using. But developments are on their way:
61 ** Chrome has an active [[issue 29784>>http://bit.ly/azCXTU]]
62 ** Firefox has started thinking about it but [[this could be sped up with a good demo>>http://bit.ly/cQ5f48]]
63 * Firefox and Opera work very well.
64 * for Chrome on OSX try the [[latest development snapshots>>http://build.chromium.org/buildbot/snapshots/]] . ( [[issue 37765>>http://code.google.com/p/chromium/issues/detail?id=37765]] was fixed 16 March )
65 * Safari on OSX has the same issue as Chrome above, but it is very difficult to get any response from their developers through their bug database. If you know how to bring their attention please do.
66
67 Please feel free to get an account and edit this wiki. Send feedback to the [[foaf-protocols mailing list>>http://lists.foaf-project.org/mailman/listinfo/foaf-protocols]]
68
69 === Code ===
70
71 The code to add to XWiki to enable this is available here http://github.com/bblfish/keygenapp in the xwiki subdirectory
72
73 == More about XWiki itself ==
74
75 This is a wiki, ie an easy-to-edit website that will help you work better together. This Wiki is made of //pages// sorted by //spaces//. You're currently in the **Main** space, looking at its home page (**WebHome**).
76
77 {{velocity}}
78 #if($hasEdit)You can use the [[Sandbox space>>Sandbox.WebHome]] to try out your wiki's features.#end
79 {{/velocity}}
80
81 {{include document="Main.Dashboard"/}}