ODS.VirtWTDStepByStepConfigGuide
Virtuoso WebID+TLS+Delegation Step by Step Configuration Guide
WebID+TLS+Delegation provides hasIdentityDelegate
and onBehalfOf
represented by RDF statements stored in
How it works
The process is as follows:
- Delegate's credentials (X.509 certificate and private key) are used to complete the basic TLS-handshake
- Following successful TLS-handshake the reciprocal relationships in the users profile documents are verified by using them to locate the public key that was used successfully in the TLS-handshake
- Resource access is granted following successful evaluation of Attribute-based based ACLs (ABAC) associated with the
WebID of a given user (e.g. if connecting through isql, the user is identified by the WebID provided as the value of the -W option used with ISQL or /delegate connection attribute.
The primary benefit of
The following notes detail how to configure and test
- Virtuoso Server WebID+TLS+Delegation Setup
- Software Agent & WebID Profile Document Creation
- WebID+TLS+Delegation VAL ACL Creation
- WebID+TLS+Delegation ACL Testing
Related
- Virtuoso WebID+TLS+Delegation Usage Guide
- Virtuoso Authentication Layer (VAL) - What, Why and How
- Virtuoso Authentication Layer - ACL System QuickStart Guide
- Using X509 Certificates With ODBC Connection