This HTML5 document contains 96 embedded RDF statements represented using HTML+Microdata notation.

The embedded RDF content will be recognized by any processor of HTML5 Microdata.

PrefixNamespace IRI
n7http://ods.openlinksw.com/dataspace/person/dav#
dctermshttp://purl.org/dc/terms/
atomhttp://atomowl.org/ontologies/atomrdf#
n5http://ods.openlinksw.com/dataspace/owiki/wiki/
n36http://ods.openlinksw.com:80/wiki/main/ODS/ODSWebIDIdpProxy/ldap6.
foafhttp://xmlns.com/foaf/0.1/
n29http://ods.openlinksw.com:80/wiki/main/ODS/ODSWebIDIdpProxy/ldap5.
oplhttp://www.openlinksw.com/schema/attribution#
n9http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/
n24https://foaf.me/simpleLogin.
n27http://ods.openlinksw.com:80/wiki/main/ODS/ODSWebIDIdpProxy/ldap4.
n6http://ods.openlinksw.com/dataspace/%28NULL%29/wiki/ODS/
n28http://docs.openlinksw.com/virtuoso/rdfsparql.
n16http://ods.openlinksw.com/dataspace/owiki#
dchttp://purl.org/dc/elements/1.1/
n19http://id.myopenlink.net/certgen/,
n22http://test.foafssl.org/cert/
n34http://ods.openlinksw.com:80/wiki/main/ODS/ODSWebIDIdpProxy/ldap3.
n35http://docs.openlinksw.com/virtuoso/
n11http://id.myopenlink.net/certgen/
n32http://ods.openlinksw.com:80/wiki/main/ODS/ODSWebIDIdpProxy/ldap2.
rdfshttp://www.w3.org/2000/01/rdf-schema#
n14http://rdfs.org/sioc/services#
n33http://docs.openlinksw.com/virtuoso/rdfsparql.html#
n2http://ods.openlinksw.com/dataspace/owiki/wiki/ODS/
siocthttp://rdfs.org/sioc/types#
n10http://ods.openlinksw.com/dataspace/person/owiki#
n4https://virtuoso.openlinksw.com/download/
rdfhttp://www.w3.org/1999/02/22-rdf-syntax-ns#
n13http://ods.openlinksw.com/dataspace/services/wiki/
n18https://id.myopenlink.net:443/ods/webid_check.
n20http://id.myopenlink.net/certgen/.
n31http://ods.openlinksw.com/dataspace/owiki/wiki/ODS/ODSWebIDIdpProxy/sioc.
xsdhhttp://www.w3.org/2001/XMLSchema#
n25http://ods.openlinksw.com/dataspace/dav#
n23http://esw.w3.org/topic/foaf+
siochttp://rdfs.org/sioc/ns#
Subject Item
n7:this
foaf:made
n2:ODSWebIDIdpProxy
Subject Item
n13:item
n14:services_of
n2:ODSWebIDIdpProxy
Subject Item
n16:this
sioc:creator_of
n2:ODSWebIDIdpProxy
Subject Item
n2:ODSWebIDIdpProxy
rdf:type
atom:Entry sioct:Comment
dcterms:created
2017-06-13T06:02:51.329527
dcterms:modified
2018-04-05T18:06:22.382354
rdfs:label
ODSWebIDIdpProxy
foaf:maker
n10:this n7:this
dc:title
ODSWebIDIdpProxy
opl:isDescribedUsing
n31:rdf
sioc:has_creator
n25:this n16:this
sioc:attachment
n27:png n29:png n32:png n34:png n36:png
sioc:content
%META:TOPICPARENT{name="ODSIndex"}% ---+ Using Virtuoso's WebID Identity Provider (IdP) Proxy Service with an X.509 certificate bearing an LDAP scheme WebID %TOC% ---++What? A callback supporting service that enables third parties verify WebIDs via RESTful interaction patterns. ---++Why? Most Web Developers and Users prefer to do plumbing as opposed to wholesale development in the course of web exploitation. Thus, federated services to which responsibilities can be delegated are always beneficial. ---++How? This verification service offers a user-friendly alternative to manually querying SPARQL endpoints; i.e., checking whether a WebID and Public Key are related within a profile graph. The service currently supports WebIDs based on the <code>ldap:</code>, <code>http:</code>, <code>mailto:</code>, <code>acct:</code> URI schemes. Other URI schemes will be added over time. ---+++ Example Using the Service Endpoint ---++++ Prerequisites If you want to use your own Virtuoso instance for this exercise, please ensure the following steps are performed: 1 Start Virtuoso server instance (locally, remote, EC2 AMI, etc. ); 1 Configure an [[ODSSetupSSL][HTTPS Listener]] for handling HTTPS requests from HTTP user agents (clients); 1 Install the [[https://virtuoso.openlinksw.com/download/][ODS Framework VAD package]]; 1 Install the [[https://virtuoso.openlinksw.com/download/][HTML based Certificate Generator VAD package]]; 1 Create an [[ODSGenerateX509Certificate][X.509 Certificate]] with WebID watermark. Otherwise, simply use the live certificate generation service at: http://id.myopenlink.net/certgen/. ---++++ Steps 1 Access the service endpoint: <code>https://&lt;Virtuoso host or IP address&gt;[:&lt;ssl-port&gt;]/ods/webid_check.vsp</code>, e.g., [[https://id.myopenlink.net:443/ods/webid_check.vsp][https://id.myopenlink.net:443/ods/webid_check.vsp]] 1 The browser should prompt for identification. Select the certificate generated above, and click "OK". %BR%%BR%<img src="%ATTACHURLPATH%/ldap2.png" />%BR%%BR% 1 The WebID Identity Provider UI should be presented: %BR%%BR%<img src="%ATTACHURLPATH%/ldap3.png" />%BR%%BR% 1 Enter a Requesting service endpoint, for example: <verbatim> https://id.myopenlink.net/ods/ </verbatim> %BR%%BR%<img src="%ATTACHURLPATH%/ldap4.png" />%BR%%BR% 1 Click "Go". 1 When prompted for verification, again the certificate generated above and click "OK": %BR%%BR%<img src="%ATTACHURLPATH%/ldap2.png" />%BR%%BR% 1 You should now be redirected to a log in page which has recognized the certificate's WebID, and a "WebID Login" should be offered: %BR%%BR%<img src="%ATTACHURLPATH%/ldap5.png" />%BR%%BR% 1 Click the "WebID Login" button. 1 You should now be successfully logged in: %BR%%BR%<img src="%ATTACHURLPATH%/ldap6.png" />%BR%%BR% ---+++ Examples Using cURL ---++++ Prerequisites ---+++++ Using Your Own Virtuoso Instance If you want to use your own Virtuoso instance for this exercise, please ensure the following steps are performed: 1 Start Virtuoso server instance (locally, remote, EC2 AMI, etc. ); 1 Configure an [[ODSSetupSSL][HTTPS Listener]] for handling HTTPS requests from HTTP user agents (clients); 1 Install the [[https://virtuoso.openlinksw.com/download/][ODS Framework VAD package]]; 1 Install the [[https://virtuoso.openlinksw.com/download/][HTML based Certificate Generator VAD package]]; 1 Create an [[ODSGenerateX509Certificate][X.509 Certificate]] with WebID watermark. Otherwise, simply use the live certificate generation service at: http://id.myopenlink.net/certgen/. 1 Using the service at: http://id.myopenlink.net/certgen/, export the generated X.509 Certificate and its associated private key to a local PKCS#12 (.p12 of .pfx) file system e.g., the file: "demo.p12" and password: "test"; or simply export to a PEM file. 1 Alternatively, you can achieve the same using OpenSSL utilities by executing the following from the command line: <verbatim> openssl pkcs12 -in demo.p12 -out demo.pem -nodes </verbatim> ---+++++ Using A Live Instance If don't already have an X.509 certificate with a WebID watermark, simply use the live certificate generation service at: http://id.myopenlink.net/certgen/ . You can also use this service to export your certificate in PEM and other formats. ---++++Example 1: Call the Service with Certificate 1 Execute the following command: <verbatim> $ curl -i -k --cert demo.pem https://id.myopenlink.net/ods/webid_check.vsp?callback=http://id.myopenlink.net/myapp/ Enter PEM pass phrase: HTTP/1.1 302 Found Server: Virtuoso/06.03.3131 (Linux) x86_64-generic-linux-glibc25-64 VDB Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Date: Thu, 05 Jan 2012 16:08:13 GMT Accept-Ranges: bytes Location: http://id.myopenlink.net/myapp/?webid=http%3A%2F%2Fid.myopenlink.net%2Fdataspace%2Fperson%2Fdemo%23this&ts=2012-01-05T11%3A08%3A13.000004-05 %3A00&signature=a17coYTjgrPnz%2FmEi9OVRwiTEa8%3D Content-Length: 0 </verbatim> 1 In case of successful WebID verification, the WebID should be returned, as above: <verbatim> webid=http%3A%2F%2Fid.myopenlink.net%2Fdataspace%2Fperson%2Fdemo%23this </verbatim> 1 Additionally a timestamp in ISO 8601 format should be returned, as above: <verbatim> ts=2012-01-05T11%3A08%3A13.000004-05 </verbatim> ---++++Example 2: Call the Service without Certificate 1 Execute the following command: <verbatim> $ curl -i -k https://id.myopenlink.net/ods/webid_check.vsp?callback=http://id.myopenlink.net/myapp/ HTTP/1.1 302 Found Server: Virtuoso/06.03.3131 (Linux) x86_64-generic-linux-glibc25-64 VDB Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Date: Thu, 05 Jan 2012 15:02:16 GMT Accept-Ranges: bytes Location: http://id.myopenlink.net/myapp/?error=noCert&ts=2012-01-05T10%3A02%3A16-05%3A00&signature=TLNskapgUg75%2FzJSRe154RloH%2FE%3D Content-Length: 0 </verbatim> 1 The service returns "<code>error=..</code>" as it is in our example showing there is no certificate: <verbatim> error=noCert </verbatim> ---++Related * [[ODSWebIDIdP][Using Virtuoso's Delegated WebID Verification Service]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLEndpointProtection][Safeguarding your Virtuoso-hosted SPARQL Endpoint]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtTipsAndTricksGuideSPARQLEndpointProtection][SPARQL Endpoint Protection Methods Collection]] * [[http://docs.openlinksw.com/virtuoso/][Virtuoso documentation]] * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html#rdfsupportedprotocolendpoint][SPARQL Service Endpoint]] * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html#rdfsupportedprotocolendpointuri][Service Endpoint Security]] * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html#sparqwebservicetbl][Managing a SPARQL Web Service Endpoint]] * [[http://docs.openlinksw.com/virtuoso/rdfsparql.html][SPARQL]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtTipsAndTricksGuide][Virtuoso Tips and Tricks Collection]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLDET][SPARQL Endpoint DET Configuration Guide]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLSecurityWebID][WebID Protocol & SPARQL Endpoint ACLs Tutorial]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtOAuthSPARQL][SPARQL OAuth Tutorial]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtTipsAndTricksGuideSPARQLEndpoints][Securing SPARQL endpoints]] * [[OdsSPARQLAuth][SPARUL over SPARQL using the http://cname:port/sparql-auth endpoint]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtAuthServerUI][Virtuoso Authentication Server UI]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLSSL][Manage a SPARQL-WebID based Endpoint]] * [[VirtODSSecurityWebID][WebID Protocol Support in OpenLink Data Spaces]]. * Manage ODS Datadspaces Objects WebID Access Control Lists (ACLs): * [[ODSBriefcaseWebID][ODS Briefcase WebID based ACL Guide]] * [[ODSBriefcaseWebIDPerson][Person Entity WebID based ACL Guide]] * [[ODSBriefcaseWebIDGroup][Group Entity WebID based ACL Guide]] * [[ODSBriefcaseWebIDPublic][Public WebID based ACL Guide]] * [[ODSFeedManagerWebIDACL][ODS Feed Manager WebID based ACL Guide]] * [[ODSFeedManagerWebIDACLPerson][Person Entity Specific ACL]] * [[ODSFeedManagerWebIDACLGroup][Group Entity Specific ACL]] * [[ODSFeedManagerWebIDACLPublic][Public Specific ACL for anyone with a WebID]] * [[ODSCalendarWebIDACL][ODS Calendar WebID based ACL Guide]] * [[ODSCalendarWebIDACLPerson][Person Entity Specific ACL]] * [[ODSCalendarWebIDACLGroup][Group Entity Specific ACL]] * [[ODSCalendarWebIDACLPublic][Public Specific ACL for anyone with a WebID]] * [[ODSBookmarksWebIDACL][ODS Bookmark Manager WebID based ACL Guide]] * [[ODSBookmarksWebIDACLPerson][Person Entity Specific ACL]] * [[ODSBookmarksWebIDACLGroup][Group Entity Specific ACL]] * [[ODSBookmarksWebIDACLPublic][Public Specific ACL for anyone with a WebID]] * [[ODSAddressBookWebIDACL][ODS Addressbook WebID based ACL Guide]] * [[ODSAddressBookWebIDACLPerson][Person Entity Specific ACL]] * [[ODSAddressBookWebIDACLGroup][Group Entity Specific ACL]] * [[ODSAddressBookWebIDACLPublic][Public Specific ACL for anyone with a WebID]] * [[ODSPkiSetup][Guide for Set up a X.509 certificate issuer and HTTPS listener and generate ODS user certificates]] * [[ODSSetupSSL][Configure Virtuoso+ODS instance as an X.509 Certificate Authority and HTTPS listener]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSetupSSL][Configure Virtuoso instance as an X.509 Certificate Authority and HTTPS listener]] * [[VirtODSPubSubHub][Setting up PubSubHub in ODS]] * [[VirtPubSubHub][PubSubHubBub Demo Client Example]] * [[VirtFeedPubSubHub][Feed subscription via PubSubHub protocol Example ]] * [[VirtPubSubHubACL][Setting Up PubSubHub to use WebID Protocol or IP based control lists]] * [[OdsKeyImport][CA Keys Import using Conductor]] * [[ODSGenerateX509Certificate][Generate an X.509 Certificate hosted WebID Guide]] * [[ODSGenerateWebIDX509CertOSKeystore][Generate an X.509 Certificate (with a WebID watermark) to be managed by host operating system keystore]] * [[ODSGenerateWebIDX509CertBrsKeystore][Generate an X.509 Certificate (with a WebID watermark) to be managed by a browser-based keystore]] * [[ODSBriefcaseWebIDShareFile][ODS Briefcase WebID Protocol Share File Guide]] * [[http://esw.w3.org/topic/foaf+ssl][WebID Protocol Specification]] * [[https://foaf.me/simpleLogin.php][Test WebID Protocol Certificate page]] * [[http://test.foafssl.org/cert/][WebID Protocol Certificate Generation page]]
sioc:id
8b165409d140498d274ce37e9df00462
sioc:link
n2:ODSWebIDIdpProxy
sioc:has_container
n5:ODS
n14:has_services
n13:item
atom:title
ODSWebIDIdpProxy
sioc:links_to
n2:ODSPkiSetup n4: n2:VirtPubSubHub n2:ODSGenerateX509Certificate n2:ODSAddressBookWebIDACLGroup n2:ODSAddressBookWebIDACLPerson n2:ODSAddressBookWebIDACLPublic n2:ODSAddressBookWebIDACL n6:WebID n2:ODSBookmarksWebIDACLPublic n2:ODSCalendarWebIDACLPerson n2:ODSBookmarksWebIDACLGroup n9:VirtOAuthSPARQL n2:ODSBriefcaseWebIDGroup n9:VirtSPARQLSSL n9:VirtAuthServerUI n2:ODSBookmarksWebIDACLPerson n11: n2:ODSBookmarksWebIDACL n2:ODSCalendarWebIDACLPublic n2:ODSCalendarWebIDACLGroup n9:VirtTipsAndTricksGuideSPARQLEndpointProtection n2:ODSCalendarWebIDACL n2:ODSFeedManagerWebIDACLPublic n2:ODSFeedManagerWebIDACLGroup n2:ODSFeedManagerWebIDACLPerson n2:OdsSPARQLAuth n2:ODSFeedManagerWebIDACL n6:WebIDs n9:VirtSetupSSL n9:VirtSPARQLSecurityWebID n2:ODSBriefcaseWebIDPublic n18:vsp n9:VirtTipsAndTricksGuideSPARQLEndpoints n19: n9:VirtTipsAndTricksGuide n9:VirtSPARQLDET n20: n9:VirtSPARQLEndpointProtection n2:ODSBriefcaseWebIDPerson n2:ODSBriefcaseWebID n22: n23:ssl n24:php n6:OpenSSL n2:VirtODSPubSubHub n2:VirtODSSecurityWebID n2:VirtPubSubHubACL n2:ODSBriefcaseWebIDShareFile n2:ODSGenerateWebIDX509CertOSKeystore n2:OdsKeyImport n28:html n2:ODSGenerateWebIDX509CertBrsKeystore n33:rdfsupportedprotocolendpointuri n33:sparqwebservicetbl n2:VirtFeedPubSubHub n35: n33:rdfsupportedprotocolendpoint n6:IdP
atom:source
n5:ODS
atom:author
n7:this
atom:published
2017-06-13T06:02:51Z
atom:updated
2018-04-05T18:06:22Z
sioc:topic
n5:ODS
Subject Item
n5:ODS
sioc:container_of
n2:ODSWebIDIdpProxy
atom:entry
n2:ODSWebIDIdpProxy
atom:contains
n2:ODSWebIDIdpProxy
Subject Item
n25:this
sioc:creator_of
n2:ODSWebIDIdpProxy
Subject Item
n2:ODSSetupSSL
sioc:links_to
n2:ODSWebIDIdpProxy
Subject Item
n2:OdsConfig
sioc:links_to
n2:ODSWebIDIdpProxy
Subject Item
n2:ODSWebIDIdP
sioc:links_to
n2:ODSWebIDIdpProxy