-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Requiring acl:defaultForNew? #164
Comments
Reading https://github.com/solid/web-access-control-spec#default-inherited-authorizations, it sounds like creating a resource in a container with an Is that how others are reading it? That seems like an alternative to using inheritance, in that the new resource would have an ACL attached and you would not need to go inspect the container to figure out which ACL to use. |
@escowles : my reading is slightly different in that no new ACLs are created for resources created under a container with The following section offers the specific search algorithm: https://github.com/solid/web-access-control-spec#acl-inheritance-algorithm-example |
@awoods OK, so if a container has multiple ACLs, the |
@awoods - I agree that that more than one @acoburn - I think WAC is silent on creation of new ACL resources for newly created resources, it just says how to find ACL resources from parent containers for resources that don't have their own. Thus, in your example, unless some child resource had an ACL created for it directly (allowed but not specified), all 10 children would see the inherited (at access time) subset of current permissions of the parent container marked |
Have asked about Status of planned |
This has been resolved in the ACL vocabulary which now says:
so we should use |
acl:defaultForNew - we currently use an assumed inheritance. Is the Fedora spec requiring a change to this other pattern?
Extracted from: #145
The text was updated successfully, but these errors were encountered: