Re: [xwiki-devs] cert creation component

I needed some more background on this, as it turned out I was about to ask a stupid question about who signs the certs, but that is basically answered here: http://blogs.sun.com/bblfish/entry/foaf_ssl_pki_and_the (foaf+ssl, pki and the duck-rabbit) Whereas PKI is used for hierarchical trust, we use it to build a web of Ok, this is beginning to make sense. PGP via the web browser, using browser mechanisms to install SSL client certificates. Looking for more background, I found these: http://blogs.sun.com/bblfish/entry/foaf_ssl_adding_security_to foaf+ssl: adding security to open distributed social networks http://blogs.sun.com/bblfish/entry/more_on_authorization_in_foaf foaf+ssl: creating a web of trust without key signing parties http://blogs.sun.com/bblfish/entry/building_secure_and_distributed_social Building Secure, Open and Distributed Social Network Applications ... I think it would be very useful to integrate FOAFiness with Xwiki's access control: e.g. allow FOAFs passed document links in your wiki to conditionally register/login and view/comment the given link/document. Nonregistered users would be given access based on space-rights (if space not publicly viewable, then access denied). By conditionally register/login, I mean that you could place access control rules on how far you might want to allow any private document to "spread" in a foaf network. E.g. some documents would only be accessible by first-level friends, etc. Is something like the above part of the "use case" for Foaf+SSL in Xwiki?? Niels http://nielsmayer.com